31e78f547e32e1fd490dcf763afa673d9f29bb49db251003b93dd70e151abc78

General

Target

31e78f547e32e1fd490dcf763afa673d9f29bb49db251003b93dd70e151abc78
Size

226KB
MD5

4f89ed6dd35f972ed0e7c2f58fc1dabc
SHA1

713789861ac71185b90b3e289257e71aea22257a
SHA256

31e78f547e32e1fd490dcf763afa673d9f29bb49db251003b93dd70e151abc78
SHA512

f7570afc4df8a3a2094b3568f1b018b858d4f6bc1e2ad4590a63687093b659731d9e9aeb7cb3dd3c87cf890b3472fc4f96c3538b5d6c03aa9ddba9c2e0027272
SSDEEP

6144:1Ukt+g0QPekyswLCwuSr08hKZFXZoMq33:6kh0igTx9nXMO3

Score

N/A

Malware Config

Signatures

Files

31e78f547e32e1fd490dcf763afa673d9f29bb49db251003b93dd70e151abc78
.dll windows x86

1b650af07533d829f2ff6256f3718cea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
SetHandleCount
lstrcpyA
LoadLibraryA
VirtualAlloc
HeapAlloc
HeapFree
WriteFile
WideCharToMultiByte
GetEnvironmentStringsW
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
HeapDestroy
HeapCreate
FreeEnvironmentStringsW
GetCPInfo
GetFileType
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings

ltkrn13n

ord192
ord189
ord163
ord282
ord283
ord188
ord191
ord190

Exports

Exports

DllMain
fltInfo
fltLoad
fltSave

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 892B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 206KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1b650af07533d829f2ff6256f3718cea

Headers

File Characteristics

Imports

kernel32

ltkrn13n

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 3KB

.idata Size: 1024B - Virtual size: 892B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 732B

.text Size: 206KB - Virtual size: 208KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 3KB

.idata
Size: 1024B - Virtual size: 892B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 732B

.text
Size: 206KB - Virtual size: 208KB