0a9017070b07dde6a67051ff0e39bdd8ea47aa1a[.]dll

General

Target

0a9017070b07dde6a67051ff0e39bdd8ea47aa1a.dll
Size

339KB
MD5

d2f1e9f0b9defb5c9f5e29750d00d749
SHA1

0a9017070b07dde6a67051ff0e39bdd8ea47aa1a
SHA256

7b784c95fdcc99a259369893af8433032ccbc14459154f99852f8d44b624b9b8
SHA512

3152f2fd3ea5dea542ecd6688753b34d66e5825e8d09166f8e6cb0221ab44c57c77e407b6b695e37650f84b569ae86a84ed54f26b7f4667ed7e231cae5314ca5
SSDEEP

6144:WnvFToB71ZiySgAFdA3o8YE475mcBfLFUjFxmBCn01fA0rBP+:WncnhIdAY8YE47AcBTFUpJn61B

Score

N/A

Malware Config

Signatures

Files

0a9017070b07dde6a67051ff0e39bdd8ea47aa1a.dll
.dll windows x86

f5793f13f83b80bb239c2bb2f2c12113

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
VirtualProtect
GetHandleInformation
GetCurrentProcess
WriteFile
OutputDebugStringA
SetFilePointer
lstrlenA
WaitForSingleObject
GetCurrentThreadId
SuspendThread
ResumeThread
SetEnvironmentStringsA
lstrcatA
GetCommandLineA
Sleep
GetFileAttributesA
CreateFileA
LoadLibraryA
CloseHandle
GetSystemInfo
HeapAlloc
GetStartupInfoA
GetFileSize
ExitProcess
GetProcessHeap
GetProcessInformation
GetFileType
FormatMessageA
CreateSemaphoreA
CreateEventA
GetTickCount
GetStringTypeA
VirtualQuery
GetFileTime
OpenThread
FlushFileBuffers

user32

SetActiveWindow
MessageBoxA
FlashWindow

oleaut32

OaBuildVersion

Exports

Exports

CorrectOfSnow
IOIOGJigjivni2
JIIBaosjgrei
KBOajj93jidhe
OOjag903jg92j
koxckosjgo3jje
sgiou39883u92
siogjoisj944hoj
vnbmvogqwopgjeih
xioiosghiehojo

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 308B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f5793f13f83b80bb239c2bb2f2c12113

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

oleaut32

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 21KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 314KB - Virtual size: 313KB

.reloc Size: 512B - Virtual size: 308B

.text
Size: 22KB - Virtual size: 21KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 314KB - Virtual size: 313KB

.reloc
Size: 512B - Virtual size: 308B