f37dc5039dd54e728de1b161ef1178b9ee505bc8ec8e0d0324352a8da8b729ea

Sharing

Copy URL Twitter E-mail

General

Target

f37dc5039dd54e728de1b161ef1178b9ee505bc8ec8e0d0324352a8da8b729ea
Size

132KB
MD5

df7e2674bfdc8cf4ec22779102eaf294
SHA1

7c85719194cc9972622ce2e0d5f5281e5c860db1
SHA256

f37dc5039dd54e728de1b161ef1178b9ee505bc8ec8e0d0324352a8da8b729ea
SHA512

63e02b663d6cc19d7a5d7635c63eecf417d27a011d665b4b60ad74e8ae926ca5b5efd9d3cf8c9041da04ae6a2e3b2ac62470f6201bf272ad485a67cea7c713f2
SSDEEP

3072:S5OywmvllglQDOl/bokjVIuHp1ysgZWIjz/KpYeC90933xDXkvQHdFMI7vVZM6WR:SwyzvllglQylzgeYeC9093BLkvQHdFMB

Score

N/A

Malware Config

Signatures

Files

f37dc5039dd54e728de1b161ef1178b9ee505bc8ec8e0d0324352a8da8b729ea
.dll windows x86

734446b818bde3deb5801b680a6d0f71

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GetLastError
LoadLibraryA
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
GetModuleHandleA
InterlockedExchange
CompareStringA
lstrcpyA
FreeLibrary
lstrcatA
lstrlenA

user32

ReleaseDC
IsRectEmpty
IsWindowVisible
GetDC
GetCursorPos
SetFocus
SetParent
CreateWindowExA
RegisterClassExA
DefWindowProcA
GetParent
ShowWindow
SetWindowRgn
SendMessageA
IntersectRect
DestroyWindow
UnregisterClassA
MonitorFromPoint
GetMonitorInfoA
GetSystemMetrics
SetTimer
FindWindowA
PtInRect
PostMessageA
KillTimer
WindowFromPoint
GetCapture
ReleaseCapture
GetForegroundWindow
SetCapture
CloseWindow
UpdateWindow
GetClientRect
MapWindowPoints
EqualRect
LoadCursorA
SetCursor
SetRect
GetWindowTextA
GetWindowTextLengthA
IsWindowEnabled
MoveWindow
GetFocus
ScreenToClient
GetKeyState
SetWindowTextA
InvalidateRect
GetSysColor
OffsetRect
SetWindowPos
GetWindowRect

gdi32

SelectClipRgn
DeleteObject
FillRgn
GetStockObject
CombineRgn
CreateRectRgn
CreateFontIndirectA
CreateSolidBrush
SetBkColor
SetTextColor
LPtoDP
GetRgnBox
OffsetRgn
CreatePolygonRgn
CreateRoundRectRgn

magcore

Mag0UnregisterClass
Mag0RegisterClass
Mag0GetType
Mag0IsTypeOf
Mag0Inter
Mag0CreateObj
Mag0Retain
Mag0CopyOnWrite
Mag0CopyObject
Mag0GetObjDataC
Mag0Release

maguiengine

Mag0GetGValue
Mag0GetEngineConfig
Mag0SetGValue

maguiinter

Mag0EndUseEvent
Mag0SMDestroyPopupSurface
Mag0SMGetSurfaceManage
Mag0DispatchEvent
Mag0EventKind
Mag0SMGetEnvironment

msvcp60

??0logic_error@std@@QAE@ABV01@@Z
??1out_of_range@std@@UAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??0out_of_range@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??_7out_of_range@std@@6B@
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
??0logic_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0out_of_range@std@@QAE@ABV01@@Z

msvcrt

??1exception@@UAE@XZ
_CxxThrowException
??0exception@@QAE@ABQBD@Z
__CxxFrameHandler
??2@YAPAXI@Z
wcsncpy
strchr
wcscpy
wcslen
wcsrchr
strncpy
free
??1type_info@@UAE@XZ
__dllonexit
_onexit
_initterm
malloc
_adjust_fdiv
??0exception@@QAE@ABV0@@Z
_stricmp

Exports

Exports

Mag0Init
Mag0InitCommonET
Mag0Uninit
Mag0UninitCommonET

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 892B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

734446b818bde3deb5801b680a6d0f71

Headers

File Characteristics

Imports

kernel32

user32

gdi32

magcore

maguiengine

maguiinter

msvcp60

msvcrt

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 892B

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 892B

.reloc
Size: 8KB - Virtual size: 6KB