c19b12b591fe2f24679ba5d606b8823e39a4b5a665e827842959a6ab2096f298

Sharing

Copy URL Twitter E-mail

General

Target

c19b12b591fe2f24679ba5d606b8823e39a4b5a665e827842959a6ab2096f298
Size

220KB
MD5

9e484dd8d2f0d357fb90f42f42f97c1d
SHA1

dd09674d08c1448d92aa1615fbeb6caf243b651b
SHA256

c19b12b591fe2f24679ba5d606b8823e39a4b5a665e827842959a6ab2096f298
SHA512

892a8f656efb9ba7958255ba3b8f53f6b6099101b38cf32135ec0cfd087f8f3298e09a01bb5c32fdc358d0f829a78ac86df43919a46fb7c118ebdd762ee08186
SSDEEP

3072:qvXfnGPJaEJ9Jev4IbfLhGzeGnNML9f3Jk1+oZpZOwp4e0oZWHe:qXnfrvpjUyGSLxJM+WRaRUx

Score

N/A

Malware Config

Signatures

Files

c19b12b591fe2f24679ba5d606b8823e39a4b5a665e827842959a6ab2096f298
.dll windows x86

da7991219bd8e0dada47bad8b8eb0eaf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegEnumKeyW
RegQueryValueA
RegReplaceKeyW
RegCreateKeyExW
RegCreateKeyExA
RegEnumKeyExA
RegEnumValueW
RegOpenKeyExW
RegQueryValueExW
RegGetKeySecurity
RegEnumKeyExW
RegLoadKeyA
RegLoadKeyW
RegReplaceKeyA
RegDeleteKeyW
RegQueryInfoKeyW
RegCreateKeyW
RegQueryValueExA
RegDeleteKeyA
RegFlushKey
RegCreateKeyExW
RegLoadKeyW
RegEnumValueW
RegEnumKeyW
RegEnumValueA
RegCreateKeyW
RegQueryInfoKeyA
RegCreateKeyExA
RegDeleteKeyW
RegOpenKeyA
RegCreateKeyExA
RegQueryInfoKeyA
RegOpenKeyExA
RegReplaceKeyW
RegDeleteKeyW
RegReplaceKeyA
RegEnumValueA
RegDeleteValueW
RegLoadKeyW
RegQueryValueW
RegOpenKeyA
RegEnumKeyA
RegCreateKeyExW
RegFlushKey
RegEnumKeyExA
RegQueryValueExW
RegQueryValueA
RegOpenKeyExW
RegQueryValueA
RegQueryValueExW
RegQueryInfoKeyA
RegOpenKeyW
RegReplaceKeyW
RegEnumValueW
RegReplaceKeyA
RegOpenKeyExW
RegOpenKeyExA
RegDeleteValueA
RegOpenKeyA
RegFlushKey
RegEnumKeyW

kernel32

GetProcessHeap
GetCommandLineA
FreeConsole
GetExitCodeThread
GetConsoleOutputCP
FindNextFileW
GlobalFree
GetVersion
GetLastError
GetCommandLineA
GetExitCodeProcess
DeleteFileW
GetComputerNameW
FindFirstFileW
GetConsoleMode
GetOEMCP
GetComputerNameA
GetFileTime
CreateDirectoryA
GetProcessHeap
FindFirstFileW
GetBinaryTypeA
FindNextFileW
GetStdHandle
GetConsoleOutputCP
FreeConsole
OpenFile
GetExitCodeThread
GetOEMCP
DeleteFileW
GetACP
GetFileSize
DeleteFileA
GetExitCodeProcess
GetCommandLineA

user32

CopyImage
DrawIconEx
DialogBoxParamW
DrawTextA
LoadMenuA
GetCursor
LoadCursorA
GetDC
AlignRects
BlockInput
DrawIcon
CopyIcon
IsWindow

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 180KB - Virtual size: 499KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

da7991219bd8e0dada47bad8b8eb0eaf

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.text Size: 30KB - Virtual size: 30KB

.edata Size: 6KB - Virtual size: 5KB

.bss Size: 180KB - Virtual size: 499KB

.idata Size: 3KB - Virtual size: 2KB

.text
Size: 30KB - Virtual size: 30KB

.edata
Size: 6KB - Virtual size: 5KB

.bss
Size: 180KB - Virtual size: 499KB

.idata
Size: 3KB - Virtual size: 2KB