5e45539fbe9b34403f439b6f9cf1d26cc8dbf32afbae25b4292340e07eaf9b14

Sharing

Copy URL Twitter E-mail

General

Target

5e45539fbe9b34403f439b6f9cf1d26cc8dbf32afbae25b4292340e07eaf9b14
Size

376KB
MD5

45c71ead8f4156ec01ec7e1f1dbbce60
SHA1

3bdc2f2e426e7762572370c773d41d875a4640d5
SHA256

5e45539fbe9b34403f439b6f9cf1d26cc8dbf32afbae25b4292340e07eaf9b14
SHA512

228051abd57ca140eee36f855851c82934fbd62496e60989cf2c997995d7bdae501b51573ec6067644c67fcbce346cce93ab711746761e0d358d74aa4f7fe893
SSDEEP

6144:41uQDOsqLII9MyJSfslGc5bqCg0QNI8ANqLjDYwRXYadWkOjwGhXrcmngo:2uQDOsqLII9MyJYslGc5bqCg0QNI8AN7

Score

N/A

Malware Config

Signatures

Files

5e45539fbe9b34403f439b6f9cf1d26cc8dbf32afbae25b4292340e07eaf9b14
.dll windows x86

9a2cd8acd1fdad2263d4722cd846f252

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

getsockopt
WSAAsyncSelect
recvfrom
ioctlsocket
sendto
socket
connect
setsockopt
select
__WSAFDIsSet
recv
closesocket
send
htons
WSACleanup
WSAStartup
gethostbyname
WSAGetLastError
ntohs
ntohl
inet_addr
inet_ntoa

kernel32

GetSystemTimeAsFileTime
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
InterlockedCompareExchange
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetDiskFreeSpaceExA
CreateMutexA
ReleaseMutex
CreateFileA
SetFileAttributesA
DeleteFileA
CreateDirectoryA
GetFileAttributesA
FindFirstFileA
FindClose
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
OutputDebugStringA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetPrivateProfileStringA
DeleteCriticalSection
LoadLibraryA
GetCurrentProcessId
GetCurrentThreadId
GetLocalTime
DebugBreak
WriteFile
GetLastError
SetFilePointer
SetLastError
GetTickCount
CloseHandle
WaitForSingleObject
FlushInstructionCache
GetCurrentProcess
CreateThread
LocalFree
FormatMessageA
TerminateThread
Sleep
GetPrivateProfileIntA

user32

PeekMessageA
IsWindow
PostMessageA
DefWindowProcA
GetWindowLongA
SetWindowLongA
CreateWindowExA
DestroyWindow
KillTimer
SetTimer
TranslateMessage
DispatchMessageA
UnregisterClassA
RegisterClassA

msvcp80

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

msvcr80

memcpy
_except_handler4_common
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
free
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
atol
_itoa
_access
sprintf_s
_mbslwr
_mbsicmp
??3@YAXPAX@Z
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
__CxxFrameHandler3
_mbschr
_mbsnbcpy
_mbsrchr
strcpy_s
_vsnprintf_s
memset
strcat_s
_invalid_parameter_noinfo
??2@YAPAXI@Z
_CxxThrowException
??0exception@std@@QAE@ABV01@@Z
_snprintf_s
_mbscmp
_purecall
_localtime64_s
_time64
??_V@YAXPAX@Z
_mbsstr
memmove
_snprintf
strstr
_mbsnbcpy_s
atoi
strncpy
rand
srand
_beginthreadex
__clean_type_info_names_internal

Exports

Exports

CreateComponent
GetComponentIDs
SetDLLRegistry
SetFactoryHandle
TenioDllCanUnloadNow
TenioDllFreeMap
TenioSetDllSafe

Sections

.text
Size: 220KB - Virtual size: 219KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9a2cd8acd1fdad2263d4722cd846f252

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

msvcp80

msvcr80

Exports

Exports

Sections

.text Size: 220KB - Virtual size: 219KB

.rdata Size: 56KB - Virtual size: 53KB

.data Size: 12KB - Virtual size: 17KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 20KB - Virtual size: 17KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 220KB - Virtual size: 219KB

.rdata
Size: 56KB - Virtual size: 53KB

.data
Size: 12KB - Virtual size: 17KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 20KB - Virtual size: 17KB

.rmnet
Size: 60KB - Virtual size: 60KB