5c252490d6498220f1f9690a528252b50daf4bffbb8218679163ce212245a69c

Sharing

Copy URL Twitter E-mail

General

Target

5c252490d6498220f1f9690a528252b50daf4bffbb8218679163ce212245a69c
Size

319KB
MD5

0721809794ee58d03073011c78e1ee10
SHA1

279f2930387d8db6b604c8e4fbd9f3533c43eb44
SHA256

5c252490d6498220f1f9690a528252b50daf4bffbb8218679163ce212245a69c
SHA512

0ac2c47a932b52b27f05bd8441243245c98386195264f050519f98b8cd74dead6122e6b30f51325a88f1b9a6e818de1cd69ad911fb690e807d5a11e2df8cfac3
SSDEEP

6144:iadqhXrYajR7cVnnrpOYyWk3Q8Es+SN1NqKHvrZQ0BYa:xInjBcVn8YOREjQNHxBY

Score

N/A

Malware Config

Signatures

Files

5c252490d6498220f1f9690a528252b50daf4bffbb8218679163ce212245a69c
.dll windows x86

3dcbba5be426349447e7f09f1c38b28d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SaveDC
SetTextAlign
SetWindowExtEx
RestoreDC
StretchBlt
TextOutA
Rectangle
GetDeviceCaps
ExtCreatePen
DeleteMetaFile
DeleteDC
CreateRectRgnIndirect
CreateMetaFileA
SetWindowOrgEx
CreateCompatibleDC

oleaut32

LoadRegTypeLi
LoadTypeLi
OleCreatePropertyFrame
RegisterTypeLi
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetVartype
SafeArrayUnaccessData
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
UnRegisterTypeLi
VarUI4FromStr
VariantChangeType
VariantClear
VariantInit
SysStringByteLen
SysStringLen

user32

LoadCursorA
OffsetRect
InvalidateRect
GetWindowLongA
GetShellWindow
GetParent
GetKeyState
GetDC
EqualRect
ReleaseDC
DestroyWindow
DefWindowProcA
CreateWindowExA
CharNextA
CallWindowProcA
BeginPaint
AttachThreadInput
SetFocus
SetWindowLongA
SetWindowPos
SetWindowRgn
ShowWindow
IsChild
EndPaint

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExA
LsaClose

ole32

CoTaskMemAlloc
CoTaskMemFree
CreateDataAdviseHolder
HICON_UserSize
HMETAFILE_UserFree
OleLoadFromStream
OleRegEnumVerbs
OleRegGetMiscStatus
OleRegGetUserType
OleSaveToStream
ReadClassStm
WriteClassStm
CreateOleAdviseHolder

kernel32

TerminateProcess
Sleep
SizeofResource
SetLastError
SetHandleCount
RtlUnwind
RaiseException
QueryPerformanceCounter
MultiByteToWideChar
MulDiv
VirtualAlloc
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersionExA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemInfo
GetStdHandle
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteFile
lstrcmpiA
lstrlenA
lstrlenW
LoadResource
GetStartupInfoA
GetProcessPriorityBoost
GetProcAddress
GetModuleHandleA
GetLastError
GetCurrentProcessId
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FlushInstructionCache
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindResourceA

Exports

Exports

AsDecodedString
InPlaceFloorDivide
Node_AddChild
VaParse

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3dcbba5be426349447e7f09f1c38b28d

Headers

File Characteristics

Imports

gdi32

oleaut32

user32

advapi32

ole32

kernel32

Exports

Exports

Sections

.text Size: 101KB - Virtual size: 100KB

.rdata Size: 66KB - Virtual size: 65KB

.data Size: 62KB - Virtual size: 62KB

.rsrc Size: 79KB - Virtual size: 78KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 101KB - Virtual size: 100KB

.rdata
Size: 66KB - Virtual size: 65KB

.data
Size: 62KB - Virtual size: 62KB

.rsrc
Size: 79KB - Virtual size: 78KB

.reloc
Size: 10KB - Virtual size: 9KB