2771f3627e49408d300f2f1207ec47cf6f928573e0712ab3e0f2e4b7cf4fecf7

Sharing

Copy URL Twitter E-mail

General

Target

2771f3627e49408d300f2f1207ec47cf6f928573e0712ab3e0f2e4b7cf4fecf7
Size

508KB
MD5

6fe2201353987cca77bf84644ff74b20
SHA1

b3af501bc88a9539b370001ba5918d5ad887e98a
SHA256

2771f3627e49408d300f2f1207ec47cf6f928573e0712ab3e0f2e4b7cf4fecf7
SHA512

e159c81224952934aa98e04cf526dec66a5fd4ae1a67116fdabbbd983028869890ea89fe5197da223982a3f9b8ecf014befa52301cdfb632bca24da3f1036516
SSDEEP

12288:54+URz+NaYMqVdcVBMeW06gMy+sPJFsQcSJmSm0D71Ror:4HmduI1y+KRbgS3Er

Score

N/A

Malware Config

Signatures

Files

2771f3627e49408d300f2f1207ec47cf6f928573e0712ab3e0f2e4b7cf4fecf7
.dll windows x86

d810c752f60345980e013673fe0bb805

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
IsBadWritePtr
SetEndOfFile
IsBadReadPtr
GlobalLock
GlobalSize
GlobalUnlock
GlobalReAlloc
WriteFile
GlobalFree
MultiByteToWideChar
lstrlenA
lstrlenW
IsBadStringPtrA
CreateFileA
GetLocaleInfoW
SetStdHandle
lstrcmpA
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
GetLastError
HeapFree
GetCurrentThreadId
GetCommandLineA
GetVersionExA
HeapAlloc
GetProcessHeap
LCMapStringA
LCMapStringW
GetCPInfo
GetProcAddress
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetACP
GetOEMCP
HeapSize
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
CloseHandle
GetModuleFileNameA
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetLocaleInfoA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
LoadLibraryA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW

user32

LoadCursorA
SetCursor
GetDC
GetSysColor
wsprintfA
ReleaseDC

gdi32

GetDeviceCaps

Exports

Exports

GetFilterInfo
TX_Export
TX_Import

Sections

.text
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d810c752f60345980e013673fe0bb805

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 236KB - Virtual size: 235KB

.rdata Size: 60KB - Virtual size: 58KB

.data Size: 8KB - Virtual size: 15KB

.rsrc Size: 20KB - Virtual size: 16KB

.reloc Size: 20KB - Virtual size: 16KB

.text Size: 160KB - Virtual size: 160KB

.text
Size: 236KB - Virtual size: 235KB

.rdata
Size: 60KB - Virtual size: 58KB

.data
Size: 8KB - Virtual size: 15KB

.rsrc
Size: 20KB - Virtual size: 16KB

.reloc
Size: 20KB - Virtual size: 16KB

.text
Size: 160KB - Virtual size: 160KB