a8b17fc45a1fce9eea0cfe9aec5c1ebb3ba625fe286d1c20010b588c580b07f4

Sharing

Copy URL Twitter E-mail

General

Target

a8b17fc45a1fce9eea0cfe9aec5c1ebb3ba625fe286d1c20010b588c580b07f4
Size

73KB
MD5

8eed647fa44ccae5794507c454f68362
SHA1

ed1cbe52c7ceb21ff97f6efd7db49a441d83443d
SHA256

a8b17fc45a1fce9eea0cfe9aec5c1ebb3ba625fe286d1c20010b588c580b07f4
SHA512

07b387bfea24f2ba629f3d857f52bbf84ebb6aa5b947e890eeb07c90ff45c9f971dc5fd59a2a50f73353512837f821c77f66558a063207593f8bcdb91a8182c0
SSDEEP

1536:oY7B5oSw00LVuD81XLkt+BNusj8PRqaZVft/uwV:J7sTvrkYjRQPR9bhh

Score

N/A

Malware Config

Signatures

Files

a8b17fc45a1fce9eea0cfe9aec5c1ebb3ba625fe286d1c20010b588c580b07f4
.dll windows x86

b16b0debeb2f6c721f70db4701911cfe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareStringA
DeleteFileA
EnumResourceNamesA
ExitProcess
GetACP
GetCommandLineA
GetLastError
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetSystemTime
HeapAlloc
InterlockedIncrement
LeaveCriticalSection
RtlUnwind
SetErrorMode
SetLastError
WritePrivateProfileSectionA
lstrcmpA

advapi32

RegCloseKey
RegEnumKeyA
RegLoadKeyA
RegOpenKeyExA
RegQueryValueA
LookupPrivilegeValueA

ole32

CoCreateInstance
CoInitialize
CoUninitialize
CreateDataAdviseHolder
StringFromGUID2
CoGetClassObject
RevokeDragDrop
OleUninitialize
OleSetClipboard
CoRevokeClassObject
OleInitialize

user32

ShowOwnedPopups
ShowCursor
MessageBoxA
LoadMenuA
DrawMenuBar
DeleteMenu
CopyRect
CharUpperBuffA
ChangeMenuA
CreateCursor

shell32

ShellExecuteW
Shell_NotifyIconA
SHBindToParent
SHFileOperationA
SHGetDesktopFolder
SHGetFileInfoA
SHGetMalloc
SHGetPathFromIDListA
ShellExecuteExA
ShellExecuteA

shlwapi

StrStrIA
PathIsRelativeA
PathFileExistsA
PathCompactPathExA
PathCanonicalizeA

imm32

ImmGetContext
ImmGetCompositionStringW
ImmReleaseContext
ImmSetCompositionFontA
ImmSetCompositionWindow

msvcrt

memcpy
sscanf
vsprintf
fflush
memset

oleaut32

SysFreeString
SysStringLen
VariantChangeTypeEx
VariantClear
LoadTypeLib
SysAllocStringLen

Exports

Exports

Aoloycuvw
Jtpahyqfnvm
Lrlqyetjwq
Ogk
Qmqjkpecu
Qr
Sob
Unhdap
Xf

Sections

.text
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b16b0debeb2f6c721f70db4701911cfe

Headers

File Characteristics

Imports

kernel32

advapi32

ole32

user32

shell32

shlwapi

imm32

msvcrt

oleaut32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 16KB

.rdata Size: 22KB - Virtual size: 24KB

.data Size: 21KB - Virtual size: 24KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 12KB - Virtual size: 16KB

.text
Size: 14KB - Virtual size: 16KB

.rdata
Size: 22KB - Virtual size: 24KB

.data
Size: 21KB - Virtual size: 24KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 12KB - Virtual size: 16KB