511dab2388e7a98cc70a8e6abbfe3c47f170c9fc616941a2c05c08b1fc449ef1

Sharing

Copy URL

Twitter E-mail

General

Target

511dab2388e7a98cc70a8e6abbfe3c47f170c9fc616941a2c05c08b1fc449ef1
Size

372KB
MD5

70e58943ac83f5d6467e5e173ec66b28
SHA1

ab2dd9bb32849fcb4c8be3ca8277c7e3bd89b941
SHA256

511dab2388e7a98cc70a8e6abbfe3c47f170c9fc616941a2c05c08b1fc449ef1
SHA512

a13926885a211f814a8c3d19f4feda64c73876c1e04e93bd2fffa6ae6e03f100ea415743e8c23810f6402ae3f8d73adb3003defbc12d409656b395c3ebc7a913
SSDEEP

6144:tZ9hTPbmQmla02F8iU+7831GRHLjA8rWHzSOcwNTn:XDPb8002F8iU+43ERrjjrCnNz

Score

N/A

Malware Config

Signatures

Files

511dab2388e7a98cc70a8e6abbfe3c47f170c9fc616941a2c05c08b1fc449ef1
.dll windows x86

bf99ab1948d860f4c69e342637146a0c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
LoadLibraryW
GetFileAttributesW
InterlockedIncrement
GlobalUnlock
GetSystemTimeAsFileTime
UnhandledExceptionFilter
GetTimeFormatW
EscapeCommFunction
GetStartupInfoA
GetFullPathNameW
CreateFileMappingW
GetLocaleInfoW
CreateFileW
GlobalAlloc
FindClose
Wow64DisableWow64FsRedirection
GetModuleFileNameW
TerminateProcess
LocalUnlock
LocalLock
lstrcmpiW
LocalReAlloc
CreateToolhelp32Snapshot
GetVersionExW
GetLastError
GetDateFormatW
GetProcessHeap
HeapAlloc
GetCurrentThreadId
IsWow64Process
CreateThread
GetTickCount
GetCurrentProcessId
GetTapeParameters
WideCharToMultiByte
FindNLSString
lstrlenW
LocalSize
InterlockedExchange
CloseHandle
QueryPerformanceCounter
HeapFree
MulDiv
Sleep
MultiByteToWideChar
SetLastError
lstrcmpW
GetCommandLineW
InterlockedCompareExchange
GetCompressedFileSizeA
GetACP
FindFirstFileW
GetUserDefaultUILanguage
SetConsoleScreenBufferInfoEx
GetModuleHandleW
GetModuleHandleA
GetCurrentProcess
MapViewOfFile
FreeLibraryAndExitThread
LocalFree
GlobalLock

esent

JetPrepareUpdate

msvcrt

memset

gdi32

CreateCompatibleBitmap
GetObjectA

user32

GetWindowTextLengthW
GetDoubleClickTime
GetWindowPlacement
SetWindowTextW
GetMenu
ReleaseDC
SetFocus
OpenClipboard
GetWindowTextW
CheckMenuItem
PeekMessageW
PostQuitMessage
InvalidateRect
GetWindowLongW
DialogBoxParamW
SetActiveWindow
LoadCursorW
CharNextW
SetWindowLongW
ShowWindow
SetForegroundWindow
SendDlgItemMessageW
GetAncestor
GetDlgItemTextW
GetWindowRgn
GetKeyboardLayout
GetParent
SetCursor
RegisterWindowMessageW
DeferWindowPos
CloseClipboard
IsClipboardFormatAvailable
GetFocus
GetSystemMenu
WinHelpW
IsIconic
LoadAcceleratorsW
GetMessageW
SetWindowPos
LoadIconW
EndDialog
GetClientRect
TranslateAcceleratorW
MessageBeep
LoadStringW
GetSystemMetrics
EnableMenuItem
GetDlgCtrlID
SendMessageW
PostMessageW
DefWindowProcW
LoadImageW
IsDialogMessageW
DispatchMessageW
GetCursorPos
TranslateMessage
FindWindowW
SetWindowPlacement

wininet

GetUrlCacheEntryInfoExA

Sections

.text
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt0
Size: 196KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf99ab1948d860f4c69e342637146a0c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

esent

msvcrt

gdi32

user32

wininet

Sections

.text Size: 84KB - Virtual size: 80KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 12KB - Virtual size: 17KB

.crt0 Size: 196KB - Virtual size: 192KB

.rsrc Size: 64KB - Virtual size: 61KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 84KB - Virtual size: 80KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 12KB - Virtual size: 17KB

.crt0
Size: 196KB - Virtual size: 192KB

.rsrc
Size: 64KB - Virtual size: 61KB

.reloc
Size: 4KB - Virtual size: 2KB