23b6492eed2118685bbaed51ff1e38dd0568b2333ff830fcdf7ab6bf867b5ec7

Sharing

Copy URL

Twitter E-mail

General

Target

23b6492eed2118685bbaed51ff1e38dd0568b2333ff830fcdf7ab6bf867b5ec7
Size

304KB
MD5

43dafd409a8ca619e18e218c4591f089
SHA1

c6fd894810b8462ba59fbd43e5e6fcc06d22ab1e
SHA256

23b6492eed2118685bbaed51ff1e38dd0568b2333ff830fcdf7ab6bf867b5ec7
SHA512

ae788b99c180ea76f2fd3b4e2fd0931f49d814ef54c49f0dbccd73e7e45062e377ccf7334c598f48a59a35feac143cd7f91343b4c788ceb97135f9bfab0d1880
SSDEEP

6144:RszA6xrFJFvX5ueJZgtdN9tdUk0EUk0ecmEUPFnj1dqRQ1Q4ii5BFVIAXpM3glxT:ijfEsUPtGMPVIguglk2D

Score

1^/10

Malware Config

Signatures

Files

23b6492eed2118685bbaed51ff1e38dd0568b2333ff830fcdf7ab6bf867b5ec7
.dll windows x86

931a7d3c3d0ad54505d5065727c898f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeProcess
GetSystemTimeAsFileTime
CloseHandle
GetSystemInfo
GetCurrentProcess
GetProcAddress
LoadLibraryW
GetModuleHandleA
LoadLibraryA
FreeLibrary
GetModuleHandleW
HeapCreate
Sleep
InterlockedCompareExchange
InterlockedExchange
HeapDestroy
HeapFree
SuspendThread
SetThreadContext
GetThreadContext
Thread32Next
GetCurrentThreadId
GetCurrentProcessId
HeapReAlloc
HeapAlloc
Thread32First
CreateToolhelp32Snapshot
ResumeThread
FlushInstructionCache
GetProcessTimes
GetLastError
GlobalUnlock
GlobalLock
GlobalAlloc
FlushFileBuffers
SetStdHandle
LCMapStringW
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
SetFilePointer
InterlockedIncrement
InterlockedDecrement
IsBadCodePtr
VirtualFree
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
lstrlenW
VirtualQuery
VirtualAlloc
VirtualProtect
IsBadReadPtr
WriteFile
RtlUnwind
RaiseException
GetCommandLineA
GetVersion
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
IsBadWritePtr
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
TerminateProcess
HeapSize
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW

user32

DispatchMessageW
TranslateMessage
RemovePropW
SetWindowLongW
DefWindowProcW
GetAsyncKeyState
CallWindowProcW
GetWindowRect
GetPropW
GetClientRect
IsWindow
MessageBoxA
SetPropW
PostMessageW
GetClassLongW
SetClassLongW
MessageBoxW
PostQuitMessage
ShowWindow
GetMessageW

gdi32

DeleteObject
SelectObject
BitBlt
GetObjectA
GetDIBits
CreateDIBSection
DeleteDC
CreateCompatibleDC

comdlg32

GetSaveFileNameW
GetOpenFileNameW

Sections

.text
Size: 160KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 100KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

931a7d3c3d0ad54505d5065727c898f6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 160KB - Virtual size: 157KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 100KB - Virtual size: 105KB

.rsrc Size: 4KB - Virtual size: 3KB

.data Size: 20KB - Virtual size: 17KB

.text
Size: 160KB - Virtual size: 157KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 100KB - Virtual size: 105KB

.rsrc
Size: 4KB - Virtual size: 3KB

.data
Size: 20KB - Virtual size: 17KB