b81e7c977653d208d8eae521fa3a26d4ce188fffbce4223d4d72049791159f7a[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

b81e7c977653d208d8eae521fa3a26d4ce188fffbce4223d4d72049791159f7a.dll
Size

14KB
MD5

8026748678d8664f276741803c298cb5
SHA1

5c6d52ed10440b3820d6ace1a373df0997a146cb
SHA256

b81e7c977653d208d8eae521fa3a26d4ce188fffbce4223d4d72049791159f7a
SHA512

b19a749a53e79376b207b1aa9c10e2b9868955ef09c20fd6d259af0a6c4ceb920b551d4e73412995e93419a1f1178d76f4fb6808884d8883125524fd3239accb
SSDEEP

384:qPuTbn2oQ2nPwG3ObEd4bLTdBM88XR9D:cMbn2W2/T4P

Score

N/A

Malware Config

Signatures

Files

b81e7c977653d208d8eae521fa3a26d4ce188fffbce4223d4d72049791159f7a.dll
.dll windows x86

8f6336c8656e31856177481f7a12314b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

RtlZeroMemory
RtlAdjustPrivilege

kernel32

GetLastError
GetProcAddress
ReadFile
SetEndOfFile
SetEvent
SetFilePointer
GetFileSize
VirtualAlloc
VirtualFree
WaitForSingleObject
WriteFile
CreateEventA
CreateFileA
DeleteFileA
GetCurrentDirectoryA
LoadLibraryA
SetCurrentDirectoryA
lstrcatA
CreateProcessW
GetComputerNameW
GetExitCodeThread
FlushFileBuffers
ExitThread
CreateThread
CloseHandle
Sleep

advapi32

RegisterServiceCtrlHandlerA
SetServiceStatus
CryptReleaseContext
CryptHashData
CryptGetHashParam
CryptEncrypt
CryptDuplicateKey
CryptDestroyKey
CryptDeriveKey
CryptDecrypt
CryptCreateHash
CryptAcquireContextA
CredProtectW
CryptDestroyHash

user32

wsprintfA

secur32

InitSecurityInterfaceW

ws2_32

WSAConnect
WSAGetLastError
WSASocketA
WSAStartup
closesocket
connect
gethostbyname
gethostname
inet_addr
inet_ntoa
ioctlsocket
recv
select
send
shutdown
socket

Exports

Exports

ServiceMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 215B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f6336c8656e31856177481f7a12314b

Headers

DLL Characteristics

File Characteristics

Imports

ntdll

kernel32

advapi32

user32

secur32

ws2_32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.bss Size: - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 215B

.reloc Size: 512B - Virtual size: 300B

.text
Size: 10KB - Virtual size: 9KB

.bss
Size: - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 215B

.reloc
Size: 512B - Virtual size: 300B