eb96f522f493965db20ba2c30277a2712c2912583967a2ad17f9963c7582663e

Sharing

Copy URL Twitter E-mail

General

Target

eb96f522f493965db20ba2c30277a2712c2912583967a2ad17f9963c7582663e
Size

360KB
MD5

67f258ec6b375af56f3fc93680cec95e
SHA1

c4951fe423deb71d21dae14ab578ff02fe4c02ca
SHA256

eb96f522f493965db20ba2c30277a2712c2912583967a2ad17f9963c7582663e
SHA512

b8d3f94f53d9cab5768251e3750b82523d1d63e9911534a07f0f2c4831ce75ffb676ff32da49df857371982324277e6d917fe3f8905a1c9ae4e1401fa892eb0f
SSDEEP

6144:xWYaY/svHBNtHb7KtPUYhbz6WEirmkWmmXN4Lmmmmmmmmmmmmmmmmmmmm9So44eR:xWYaYgHBNtKFzh/RmkWmmXN4Lmmmmmme

Score

N/A

Malware Config

Signatures

Files

eb96f522f493965db20ba2c30277a2712c2912583967a2ad17f9963c7582663e
.dll windows x86

dbcfd0c9091bc382046a131106181bf7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFileTimeToFileTime
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
ExitProcess
GetTickCount

msvcr71

sprintf
strstr
atoi
isalnum
atol
??0exception@@QAE@XZ
??1exception@@UAE@XZ
??0exception@@QAE@ABV0@@Z
_CxxThrowException
??_V@YAXPAX@Z
atof
??_U@YAPAXI@Z
strchr
strncmp
qsort
_purecall
gmtime
strrchr
__CxxFrameHandler
_vsnprintf
__security_error_handler
_except_handler3
free
_initterm
malloc
_adjust_fdiv
__CppXcptFilter
??1type_info@@UAE@XZ
__dllonexit
_onexit
?terminate@@YAXXZ
_strnicmp
_stricmp
strftime
strncpy
??3@YAXPAX@Z
??2@YAPAXI@Z
_strcmpi

msvcp71

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

Exports

Exports

CanUnload
RMACreateInstance

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 236B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dbcfd0c9091bc382046a131106181bf7

Headers

File Characteristics

Imports

kernel32

msvcr71

msvcp71

Exports

Exports

Sections

.text Size: 136KB - Virtual size: 135KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 4KB - Virtual size: 236B

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 6KB

.text Size: 180KB - Virtual size: 180KB

.text
Size: 136KB - Virtual size: 135KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 4KB - Virtual size: 236B

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 6KB

.text
Size: 180KB - Virtual size: 180KB