889722c569e213d506fd37d940b1056cac7b1baf981276313178d5cc429e13e8

Sharing

Copy URL

Twitter E-mail

General

Target

889722c569e213d506fd37d940b1056cac7b1baf981276313178d5cc429e13e8
Size

334KB
MD5

68614fa2335fb83b70f21e9a52d21564
SHA1

108dbe69275819d24db77fc168acf55eedf12889
SHA256

889722c569e213d506fd37d940b1056cac7b1baf981276313178d5cc429e13e8
SHA512

6a1ead3489c7bc789b4e4e4eed665e4d1036e14191449e2604bb6ef72e6cf6345f89e494c5beeac80f15d60b9d2d08bb93298b9bd0dcdd1a9511df5a0ed9475f
SSDEEP

6144:hjJyV7oHN1J4Nlv9ojxO7tteQbJoQuTJ2slE8ihhjNDp3ILE:hjJyVEHzJolFojxO7jbJ3YJM7DVI

Score

N/A

Malware Config

Signatures

Files

889722c569e213d506fd37d940b1056cac7b1baf981276313178d5cc429e13e8
.dll windows x86

e6a527e63299de0c5a5bb7693402ee68

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableW
GetCPInfo
HeapAlloc
WaitForSingleObject
GetProcessHeap
GetSystemTimeAsFileTime
LoadLibraryW
Sleep
FormatMessageW
SetSystemPowerState
OpenMutexW
GetCurrentDirectoryW
CreateEventW
VirtualProtect
FileTimeToLocalFileTime
GetVersion
CreateFileW
SetEnvironmentVariableA
CompareStringW
WriteConsoleW
SetEndOfFile
SetFilePointer
GetStringTypeW
LCMapStringW
HeapSize
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetStdHandle
IsProcessorFeaturePresent
HeapReAlloc
CreateFileA
IsValidCodePage
GetOEMCP
GetACP
ReadFile
MultiByteToWideChar
RaiseException
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
CloseHandle
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
DeleteCriticalSection
GetCurrentThreadId
DecodePointer
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
WideCharToMultiByte
GetTimeZoneInformation
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
HeapCreate
HeapDestroy
EnterCriticalSection
LeaveCriticalSection
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
GetLastError
HeapFree
RtlUnwind
TlsAlloc
TlsGetValue
TlsSetValue

ole32

CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CoRevokeClassObject
CoUninitialize

pdh

PdhEnumObjectItemsW
PdhBrowseCountersW
PdhComputeCounterStatistics
PdhCollectQueryDataEx
PdhGetDefaultPerfObjectHW
PdhGetDefaultPerfObjectW
PdhGetFormattedCounterArrayW
PdhEnumObjectsW
PdhExpandWildCardPathW
PdhGetCounterTimeBase
PdhBindInputDataSourceW
PdhEnumLogSetNamesW
PdhEnumObjectsHW
PdhBrowseCountersHW
PdhExpandCounterPathW
PdhConnectMachineW
PdhCloseQuery
PdhGetDataSourceTimeRangeH
PdhEnumObjectItemsHW
PdhGetDefaultPerfCounterHW
PdhCreateSQLTablesW
PdhExpandWildCardPathHW
PdhGetFormattedCounterValue
PdhGetDataSourceTimeRangeW
PdhCalculateCounterFromRawValue
PdhCloseLog
PdhGetLogSetGUID
PdhFormatFromRawValue
PdhGetDefaultPerfCounterW
PdhEnumMachinesW
PdhGetDllVersion
PdhGetLogFileSize
PdhEnumMachinesHW
PdhGetCounterInfoW

Exports

Exports

Claimhot
Comparefast

Sections

.text
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6a527e63299de0c5a5bb7693402ee68

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

pdh

Exports

Exports

Sections

.text Size: 99KB - Virtual size: 98KB

.rdata Size: 125KB - Virtual size: 125KB

.data Size: 4KB - Virtual size: 1.0MB

.rsrc Size: 94KB - Virtual size: 94KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 99KB - Virtual size: 98KB

.rdata
Size: 125KB - Virtual size: 125KB

.data
Size: 4KB - Virtual size: 1.0MB

.rsrc
Size: 94KB - Virtual size: 94KB

.reloc
Size: 10KB - Virtual size: 9KB