b3f876c9ff3d462247bb2befdacb697923a5fc1aa496d323474fce2297f5b8f7

Sharing

Copy URL

Twitter E-mail

General

Target

b3f876c9ff3d462247bb2befdacb697923a5fc1aa496d323474fce2297f5b8f7
Size

364KB
MD5

c5e11c1b46fc4cac3643d9868b29f1db
SHA1

d4128f242378b63f9584645b14da68dd447ddf41
SHA256

b3f876c9ff3d462247bb2befdacb697923a5fc1aa496d323474fce2297f5b8f7
SHA512

5fd5b08541e088382a32c7925b236d32c871e83b10ebad0772425847ac4395459da89813e64b9be7a6f02d0950301e4b3e1f510cc1713f29b23dcb88e73bde40
SSDEEP

6144:xWlCQzP9Boj79gKwZhQZBSvxMrQ1RRPFiCSjM0QMD/sMFMDIPO/rA:xWJIgLZhQOvWE1RRtiCSjBDnFM8Oz

Score

N/A

Malware Config

Signatures

Files

b3f876c9ff3d462247bb2befdacb697923a5fc1aa496d323474fce2297f5b8f7
.dll windows x86

5c6801a4519e81ec1bd921a341e15d65

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegReplaceKeyA
RegOpenKeyW
RegReplaceKeyW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumValueA
RegEnumKeyW
RegLoadKeyW
RegCreateKeyExA
RegCreateKeyExW
RegLoadKeyA
RegQueryValueW
RegQueryValueExW
RegEnumValueW
RegQueryValueA
RegEnumKeyExA
RegOpenKeyExA
RegOpenKeyW
RegGetKeySecurity
RegQueryInfoKeyW
RegCreateKeyExA
RegEnumKeyExW
RegEnumKeyExA
RegQueryInfoKeyA
RegQueryValueExA
RegFlushKey
RegDeleteValueA
RegEnumValueW
RegLoadKeyW
RegQueryValueA
RegDeleteValueW
RegEnumKeyA
RegReplaceKeyA
RegReplaceKeyW
RegOpenKeyExA
RegReplaceKeyW
RegDeleteValueW
RegQueryInfoKeyW
RegOpenKeyExA
RegEnumValueA
RegOpenKeyW
RegDeleteKeyW
RegCreateKeyExA
RegFlushKey
RegCreateKeyExW
RegLoadKeyW
RegEnumKeyExW
RegCreateKeyW
RegQueryValueExW
RegEnumKeyA
RegQueryValueW
RegQueryValueA
RegReplaceKeyW
RegEnumKeyW
RegLoadKeyW
RegCreateKeyW
RegEnumValueA
RegDeleteValueA
RegOpenKeyExA
RegEnumValueW
RegCreateKeyExA
RegOpenKeyA

comctl32

ImageList_Replace
ImageList_Merge
ImageList_GetImageInfo
ImageList_Read
ImageList_DragMove
ImageList_BeginDrag
ImageList_Copy
ImageList_Draw
ImageList_Destroy
ImageList_GetIcon
ImageList_DrawIndirect
ImageList_AddIcon
ImageList_GetImageCount
ImageList_DrawEx
ImageList_EndDrag
InitCommonControls
ImageList_DrawEx
ImageList_GetImageRect
ImageList_DragShowNolock
ImageList_Destroy
ImageList_GetIcon
ImageList_LoadImage
ImageList_DragEnter
ImageList_GetImageCount
ImageList_Read
ImageList_DragLeave
ImageList_AddMasked

user32

CopyRect
DrawIcon
CopyIcon
GetWindowTextA
AlignRects
DrawTextW
AppendMenuW
LoadCursorA
BlockInput
InsertMenuA
GetDC
GetWindowTextLengthA
LoadMenuA
AppendMenuA
GetFocus
GetCursor
CloseWindow
GetDC
LoadMenuA
GetWindowTextA
CopyRect
EndDialog
DrawTextW
InsertMenuA
CalcMenuBar
AppendMenuW
BlockInput
CreateIcon
DialogBoxParamA
GetFocus
GetWindowTextLengthA
GetMenu

kernel32

GetCommandLineA
ReadFile
OpenFileMappingA
CopyFileW
GetFileTime
GlobalFree
ReadConsoleA
CopyFileExA
GetConsoleMode
OpenFile
GetCPInfo
GetComputerNameA
GetLastError
WriteFile
GetConsoleMode
CopyFileExW
Sleep
DeleteAtom
CreateProcessA
ReadConsoleA
GetFileTime
CopyFileExA
CreateThread
GlobalFree
CopyFileW
CreateDirectoryA

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rDaTa
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Bss
Size: 348KB - Virtual size: 347KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CoDe
Size: 512B - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c6801a4519e81ec1bd921a341e15d65

Headers

File Characteristics

Imports

advapi32

comctl32

user32

kernel32

Sections

.text Size: 8KB - Virtual size: 7KB

rDaTa Size: - Virtual size: 3KB

.Bss Size: 348KB - Virtual size: 347KB

.idata Size: 4KB - Virtual size: 4KB

.edata Size: 1KB - Virtual size: 1KB

CoDe Size: 512B - Virtual size: 245KB

.text
Size: 8KB - Virtual size: 7KB

rDaTa
Size: - Virtual size: 3KB

.Bss
Size: 348KB - Virtual size: 347KB

.idata
Size: 4KB - Virtual size: 4KB

.edata
Size: 1KB - Virtual size: 1KB

CoDe
Size: 512B - Virtual size: 245KB