b6640ca79f590018e3f3ed1957074be13b9271e0e95fb5e28eb493e1713a1e1f

Sharing

Copy URL

Twitter E-mail

General

Target

b6640ca79f590018e3f3ed1957074be13b9271e0e95fb5e28eb493e1713a1e1f
Size

496KB
MD5

46e70e7730bd8699157680b13f543db0
SHA1

4e4136fd07f1e943bf5007e4edb0ead4d643117f
SHA256

b6640ca79f590018e3f3ed1957074be13b9271e0e95fb5e28eb493e1713a1e1f
SHA512

403faab4e685c0108028f7968150a2155026fc816ee306b11877cb62e23a08f5eb544d5ab075038d4f85e83836a20cbd380ac9631c83e847810382347d0f4285
SSDEEP

12288:RsuOBieJ/mve087iimoYxP3bQA6W6t+ApyudN7:efoUmy7iimlxPUA6W5L2N

Score

N/A

Malware Config

Signatures

Files

b6640ca79f590018e3f3ed1957074be13b9271e0e95fb5e28eb493e1713a1e1f
.dll windows x86

b45e7072b04599734a15c25a4e19ce17

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
Sleep
CopyFileA
MoveFileA
SetFileAttributesA
GetFileAttributesA
lstrcmpA
IsBadWritePtr
EnterCriticalSection
LeaveCriticalSection
CreateMutexA
GetTickCount
GetVersion
UnmapViewOfFile
InterlockedIncrement
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
SetEndOfFile
SetConsoleCtrlHandler
lstrlenW
LocalFree
DeleteFileA
lstrlenA
InterlockedDecrement
CreateFileA
CloseHandle
MultiByteToWideChar
WaitForSingleObject
ReleaseMutex
LoadLibraryA
FreeLibrary
GetModuleFileNameA
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetProcessHeap
HeapAlloc
GetLastError
GetModuleHandleA
GetProcAddress
HeapFree
lstrcpyA
SetEnvironmentVariableA
CompareStringW
GetTimeZoneInformation
CompareStringA
GetCurrentProcessId
QueryPerformanceCounter
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
RtlUnwind
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCommandLineA
TlsAlloc
SetLastError
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
FatalAppExitA
HeapReAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
HeapSize
WriteFile
FlushFileBuffers
SetUnhandledExceptionFilter
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetOEMCP
GetCPInfo
LCMapStringA
WideCharToMultiByte
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetStringTypeA
GetLocaleInfoW

user32

MessageBoxA
wsprintfA
UnregisterClassA

advapi32

RegEnumKeyExA
RegOpenKeyExA
RegCreateKeyA
RegSetValueExA
RegQueryValueExA
RegCloseKey
GetFileSecurityA
SetFileSecurityA
RegOpenKeyA
AllocateAndInitializeSid
RegQueryInfoKeyA
RegGetKeySecurity
InitializeSecurityDescriptor
GetSecurityDescriptorDacl
GetAclInformation
GetLengthSid
InitializeAcl
AddAce
GetAce
EqualSid
AddAccessAllowedAce
SetSecurityDescriptorDacl
GetSecurityDescriptorControl
RegSetKeySecurity
FreeSid

ole32

OleRun
CoCreateInstance
CoInitialize

oleaut32

VariantClear
VariantChangeType
VariantCopy
VariantInit
SysFreeString
SysStringByteLen
SysAllocStringByteLen
SysAllocString
CreateErrorInfo
GetErrorInfo
SetErrorInfo

Exports

Exports

NewConfigObject
ReleaseConfigObject

Sections

.text
Size: 208KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b45e7072b04599734a15c25a4e19ce17

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 208KB - Virtual size: 205KB

.rdata Size: 28KB - Virtual size: 24KB

.data Size: 8KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 12KB - Virtual size: 10KB

.rmnet Size: 232KB - Virtual size: 232KB

.text
Size: 208KB - Virtual size: 205KB

.rdata
Size: 28KB - Virtual size: 24KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 12KB - Virtual size: 10KB

.rmnet
Size: 232KB - Virtual size: 232KB