ae86629615854f52408a8a57e064ac2dede9cba4d303f5136d1c8389f1c25f9d

Sharing

Copy URL Twitter E-mail

General

Target

ae86629615854f52408a8a57e064ac2dede9cba4d303f5136d1c8389f1c25f9d
Size

116KB
MD5

4855b9b9c69904a262395287a0906edf
SHA1

77444e3f13ca40aa3c8370fde3b9c49b3c671a0b
SHA256

ae86629615854f52408a8a57e064ac2dede9cba4d303f5136d1c8389f1c25f9d
SHA512

cb022110cf673307848a7d2cb9bb14c5a30fce95f098943c910961f1440fd63c7aeb4489c8666974e53dc5fa23c0ca205cdd84f0420f0f1e3d7f67fc5009bf04
SSDEEP

1536:CEG899e8SD/7DKHvBXnkUV0UMTBozgtEgWM0EmJq0XDdMOUBWRNas4V:nWnghnhV0UMTBomTWg/IdxU4NaV

Score

N/A

Malware Config

Signatures

Files

ae86629615854f52408a8a57e064ac2dede9cba4d303f5136d1c8389f1c25f9d
.dll windows x86

981485aad6d38aa705ebb72a53bebb7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
SetUnhandledExceptionFilter
SetLastError
FreeLibrary
DisableThreadLibraryCalls
GetVersionExA
GetFileAttributesW
ReleaseMutex
WaitForSingleObject
CreateMutexW
GetLocaleInfoW
GetGeoInfoW
GetTickCount
GetUserDefaultLCID
GetUserGeoID
LocalFree
LocalAlloc
GetUserDefaultLangID
HeapFree
FormatMessageW
lstrcmpW
GetProcessHeap
HeapAlloc
lstrlenW
InterlockedDecrement
InterlockedIncrement
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
InterlockedCompareExchange
Sleep
InterlockedExchange
CloseHandle
GetLastError
GetCommandLineA
GlobalFree
VirtualProtect
GetSystemDefaultLCID
GlobalAlloc

user32

PostMessageW
GetParent
GetWindowLongW
SetWindowLongW
GetDlgItem
LoadStringW
SetDlgItemTextW
IsWindowVisible
SendMessageW
GetDlgItemTextW
LoadIconW
DestroyIcon
EnableWindow
SetFocus
MessageBoxW
CheckDlgButton
SendDlgItemMessageW
SetCursor
LoadCursorW
CharLowerBuffW
KillTimer
ShowWindow
IsDlgButtonChecked

advapi32

RegOpenKeyExW
DuplicateTokenEx
GetTokenInformation
RevertToSelf
RegCloseKey
RegCreateKeyExW
SetThreadToken

gdi32

GetObjectType
GetCurrentObject
DeleteDC
GetDeviceCaps
GetObjectA

ole32

CreateBindCtx
OleUninitialize
CoCreateInstance
CoTaskMemFree
StringFromCLSID
CoCreateGuid
CoInitializeEx

msvcr71

_except_handler3
_adjust_fdiv
_amsg_exit
_XcptFilter
_onexit
malloc
free
_wcsicmp
memset
_initterm
memcpy
_vsnwprintf
__CppXcptFilter
__dllonexit

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

981485aad6d38aa705ebb72a53bebb7b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

msvcr71

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 40KB - Virtual size: 36KB

.data Size: 4KB - Virtual size: 34KB

.rsrc Size: 8KB - Virtual size: 5KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 40KB - Virtual size: 36KB

.data
Size: 4KB - Virtual size: 34KB

.rsrc
Size: 8KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 3KB