a79be8206316a8f0fd56030d32d67fbf816f43903b988d938cecfbb51013d283

Sharing

Copy URL

Twitter E-mail

General

Target

a79be8206316a8f0fd56030d32d67fbf816f43903b988d938cecfbb51013d283
Size

708KB
MD5

de1bc93f53c6ac12e7c550e0dc29c95c
SHA1

72c9bbf4f4a49b1fd4150e8f61f29e5aa1588301
SHA256

a79be8206316a8f0fd56030d32d67fbf816f43903b988d938cecfbb51013d283
SHA512

2a4cdcb61e6d9eee85e4def6a4819546c302d8468648f44de04350d54f10b02686579bd20125d2b9accb56ddf21ab07e367c624774c4f1f05c029b8c309e5d38
SSDEEP

12288:C+ljW9xJxzg4yed5h7TxX0+0Qdo2iu9IYcMsfyY1FkmDD:C+l4nyedDZp0QdiuqYcMsB1O+

Score

N/A

Malware Config

Signatures

Files

a79be8206316a8f0fd56030d32d67fbf816f43903b988d938cecfbb51013d283
.dll windows x86

045175e6214d9e9c616506107111800d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
CloseHandle
GetCurrentProcess
VirtualProtect
DisableThreadLibraryCalls
LoadLibraryA
GetModuleHandleA
WriteFile
GetLastError
GetFileSize
MapViewOfFile
CreateFileMappingA
CreateFileA
CreateFileW
WideCharToMultiByte
GetVersionExA
UnmapViewOfFile
LockResource
LoadResource
SizeofResource
FindResourceA
FindResourceW
IsProcessorFeaturePresent
RtlUnwind
IsBadWritePtr
IsBadReadPtr
HeapValidate
RaiseException
GetCurrentThreadId
GetCommandLineA
TerminateProcess
ExitProcess
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
DebugBreak
GetStdHandle
InterlockedDecrement
OutputDebugStringA
InterlockedIncrement
GetProcAddress
TlsFree
TlsSetValue
TlsGetValue
SetLastError
GetCurrentThread
HeapAlloc
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetUnhandledExceptionFilter
SetFilePointer
FlushFileBuffers
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
InitializeCriticalSection
SetConsoleCtrlHandler
VirtualQuery
InterlockedExchange
IsBadCodePtr
GetACP
GetOEMCP
GetCPInfo
GetProcessHeap
FreeLibrary
GetTimeFormatA
GetDateFormatA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetStdHandle
ReadFile
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetSystemInfo
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
Sleep
TlsAlloc
MulDiv
SetEndOfFile

user32

GetAsyncKeyState

gdi32

GetTextExtentPoint32A
CreateCompatibleDC
CreateDIBSection
SetMapMode
GetDeviceCaps
CreateFontA
SelectObject
DeleteDC
DeleteObject
ExtTextOutA
SetTextAlign
SetBkColor
SetTextColor

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyA

Sections

.textbss
Size: - Virtual size: 274KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 572KB - Virtual size: 569KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

045175e6214d9e9c616506107111800d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.textbss Size: - Virtual size: 274KB

.text Size: 572KB - Virtual size: 569KB

.rdata Size: 68KB - Virtual size: 65KB

.data Size: 28KB - Virtual size: 36KB

.idata Size: 8KB - Virtual size: 4KB

.data1 Size: 4KB - Virtual size: 2KB

.reloc Size: 24KB - Virtual size: 21KB

.textbss
Size: - Virtual size: 274KB

.text
Size: 572KB - Virtual size: 569KB

.rdata
Size: 68KB - Virtual size: 65KB

.data
Size: 28KB - Virtual size: 36KB

.idata
Size: 8KB - Virtual size: 4KB

.data1
Size: 4KB - Virtual size: 2KB

.reloc
Size: 24KB - Virtual size: 21KB