acfcd9d4567578bcf864f1fbf9da5795d21202eec75299c49101b8640f589e8c

Sharing

Copy URL Twitter E-mail

General

Target

acfcd9d4567578bcf864f1fbf9da5795d21202eec75299c49101b8640f589e8c
Size

96KB
MD5

4021c7ddb4c60289190be467af6f5c20
SHA1

f318e2cda26594c738d2fb06c2eeda5ebe7f4d62
SHA256

acfcd9d4567578bcf864f1fbf9da5795d21202eec75299c49101b8640f589e8c
SHA512

15c1c4203d2de163cc6b6427d537caeca66c21a534a8062a0264bb7b93e32ffd23222997eead0330643119d223272eccbedf622aa2d02b52ef3b1f6417b34b05
SSDEEP

1536:otn1GkWJQVmMnqA2Dz777XRFbVgqeGJivzIu74a:OrfVm9jz7fXDbVgqDu7p

Score

N/A

Malware Config

Signatures

Files

acfcd9d4567578bcf864f1fbf9da5795d21202eec75299c49101b8640f589e8c
.dll windows x86

3c84069342a9dd90aff90259f75a4250

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenMutexA
ReleaseMutex
IsBadReadPtr
lstrcmpA
GetSystemTime
MoveFileA
GetFileSize
SetFileApisToANSI
FindClose
FindFirstFileA
IsBadStringPtrA
IsBadWritePtr
WideCharToMultiByte
lstrlenW
WriteFile
SetFilePointer
CreateFileA
ReadFile
GetTempPathA
GetComputerNameA
SetFileTime
SystemTimeToFileTime
FileTimeToSystemTime
DeleteFileA
DeleteAtom
AddAtomA
FindAtomA
MultiByteToWideChar
FreeLibrary
GetProcAddress
HeapFree
WaitForSingleObject
GetProcessHeap
VirtualProtect
VirtualAlloc
VirtualFree
GetCurrentProcess
CreateToolhelp32Snapshot
VirtualProtectEx
VirtualFreeEx
VirtualAllocEx
Process32Next
Process32First
GetCurrentProcessId
GetModuleFileNameA
lstrcmpiA
CloseHandle
OpenEventA
SetEvent
Sleep
GetPrivateProfileStructA
GetPrivateProfileStringA
GetPrivateProfileIntA
GlobalSize
GlobalReAlloc
lstrlenA
lstrcpyA
CreateThread
GetVersionExA
_lopen
_lclose
CreateMutexA
GetLastError
LoadLibraryA
GetModuleHandleA
GetTickCount
HeapAlloc
ExpandEnvironmentStringsA
GlobalAlloc
lstrcpynA
lstrcatA
GetFileTime
GlobalFree

user32

SystemParametersInfoA
GetDesktopWindow
GetWindowRect
ScreenToClient
GetWindowDC
GetDC
GetKeyNameTextA
GetKeyboardState
ToAscii
GetWindowTextA
FindWindowExA
GetActiveWindow
CharLowerBuffA
wsprintfA
ReleaseDC

gdi32

CreateCompatibleBitmap
SelectObject
BitBlt
DeleteDC
DeleteObject
GetObjectA
GetDIBits
CreateCompatibleDC

advapi32

GetUserNameA

ole32

CoCreateGuid

msvcrt

memset
strtoul
_ultoa
strstr
_except_handler3
_local_unwind2
fclose
fprintf
strcat
fopen
??2@YAPAXI@Z
free
calloc
strlen
putc
getc
fwrite
__dllonexit
_onexit
memcpy

Sections

.text
Size: 72KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.CRT
Size: 4KB - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c84069342a9dd90aff90259f75a4250

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

msvcrt

Sections

.text Size: 72KB - Virtual size: 81KB

.rdata Size: 4KB - Virtual size: 3KB

.CRT Size: 4KB - Virtual size: 32B

.rsrc Size: 4KB - Virtual size: 856B

.reloc Size: 8KB - Virtual size: 5KB

.text
Size: 72KB - Virtual size: 81KB

.rdata
Size: 4KB - Virtual size: 3KB

.CRT
Size: 4KB - Virtual size: 32B

.rsrc
Size: 4KB - Virtual size: 856B

.reloc
Size: 8KB - Virtual size: 5KB