ccb8e17d3df37549a3dbdb31f3b5e03b8fbb3ddf9462cf962518c8e0312cdb56

General

Target

ccb8e17d3df37549a3dbdb31f3b5e03b8fbb3ddf9462cf962518c8e0312cdb56
Size

246KB
MD5

d871aee05301c265725e006800294894
SHA1

3b6d944433e24d2eb9606f8d4bfc882ba505c4d6
SHA256

ccb8e17d3df37549a3dbdb31f3b5e03b8fbb3ddf9462cf962518c8e0312cdb56
SHA512

83508d1a3e08a584e0fa4b7b7f3dc87ee4bce48eea83e6d009baf92041bd3ce8eb6ee6132f768fcd54168c1c7b845e1ef62e537471a2f3a323b79c3e0858ecc5
SSDEEP

6144:B/akcoqnPjzNCqW9aPbDROP0ZMSfFX+UlkF2gb2ojwW:BLaPjz0MIiOUWM2b8

Score

N/A

Malware Config

Signatures

Files

ccb8e17d3df37549a3dbdb31f3b5e03b8fbb3ddf9462cf962518c8e0312cdb56
.dll windows x86

1fee2afaf53adc90736556c7e669c860

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsAlloc
LeaveCriticalSection
LCMapStringA
VirtualProtectEx
HeapCreate
FreeEnvironmentStringsA
GetConsoleCP
VirtualFree
GetCommandLineA
DeleteCriticalSection
GetStdHandle
SetFilePointer
LCMapStringW
GetConsoleMode
QueryPerformanceCounter
IsDebuggerPresent
Sleep
FreeEnvironmentStringsW
GetTickCount
WideCharToMultiByte
WriteConsoleW
TlsFree
GetLastError
CreateFileA
GetProcAddress
GetCurrentProcess
GetCurrentProcessId
GetModuleHandleA
GetVersionExA
GetEnvironmentStringsW
CloseHandle
GetProcessHeap
HeapSize
GetCPInfo
GetCurrentThreadId
IsValidCodePage
GetConsoleOutputCP
FlushFileBuffers
SetLastError
InterlockedIncrement
GetStringTypeW
MultiByteToWideChar
TerminateProcess
GetStartupInfoA
VirtualAlloc
EnterCriticalSection
UnhandledExceptionFilter
GetModuleFileNameA
ExitProcess
SetStdHandle
LoadLibraryA
HeapDestroy
WriteConsoleA
TlsGetValue
HeapFree
GetEnvironmentStrings
TlsSetValue
HeapAlloc
GetACP
RtlUnwind
WriteFile
GetOEMCP
GetSystemTimeAsFileTime
HeapReAlloc
SetUnhandledExceptionFilter
GetLocaleInfoA
GetStringTypeA
GetFileType
InterlockedDecrement
SetHandleCount
InitializeCriticalSection

Exports

Exports

kLdKp
bEPWYgeAX
jqPGf

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 246B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fee2afaf53adc90736556c7e669c860

Code Sign

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 236KB - Virtual size: 235KB

.data Size: 512B - Virtual size: 246B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 236KB - Virtual size: 235KB

.data
Size: 512B - Virtual size: 246B

.reloc
Size: 1KB - Virtual size: 1KB