14842a4c085aff91d7f2e92f1fb0c13c15806a6ec3a05133193b4f6fc6780a5c

Sharing

Copy URL Twitter E-mail

General

Target

14842a4c085aff91d7f2e92f1fb0c13c15806a6ec3a05133193b4f6fc6780a5c
Size

355KB
MD5

3ea4bf65c887fdc9123c41caffba8607
SHA1

ac86ba8e34cba39971edb461293085312670d7df
SHA256

14842a4c085aff91d7f2e92f1fb0c13c15806a6ec3a05133193b4f6fc6780a5c
SHA512

e074938b7577bf50bde5b276fecc1aabe0c2066830afda2784cd6a911a0ad53c76f194c422004a19b67628a565ff99be00ce7b39a9f73b671d2420c3d806fdd1
SSDEEP

6144:Ysp1LjNwNUuTmS2cTcfAp8N9peoQnyiVwV4Klz5N0+mBop0BqDCANzOk+jTHRuw:V1vS2cTcYp8N9peoetS4Klty+iBq+cKT

Score

N/A

Malware Config

Signatures

Files

14842a4c085aff91d7f2e92f1fb0c13c15806a6ec3a05133193b4f6fc6780a5c
.dll windows x86

97b04c1c3dc2185fec62e16be3142c46

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
GetProcAddress
GetCurrentDirectoryW
GetModuleFileNameW
GetLastError
GetTempPathW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateDirectoryW
GetLocalTime
CreateFileW
LoadLibraryW
CloseHandle
WriteFile
ReadFile
SetFilePointer
CreateFileA
GetProcessHeap
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoW
WideCharToMultiByte
FreeLibrary
OutputDebugStringA
GetFileSize
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetCurrentProcessId
GetTickCount
InterlockedIncrement
InterlockedDecrement
InterlockedCompareExchange
InterlockedExchange
Sleep
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
ExitProcess
HeapReAlloc
HeapAlloc
DeleteFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
GetFileAttributesW
GetSystemTimeAsFileTime
GetDriveTypeW
FindFirstFileW
GetCurrentThreadId
GetCommandLineA
RaiseException
RtlUnwind
GetStringTypeW
GetCPInfo
LCMapStringA
LCMapStringW
CompareStringW
CompareStringA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapSize
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
GetACP
GetOEMCP
IsValidCodePage
GetStdHandle
GetModuleFileNameA
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetCurrentDirectoryA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetHandleCount
GetFileType
GetStartupInfoA
GetTimeZoneInformation
GetFullPathNameW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
SetEnvironmentVariableA

ole32

CoInitializeEx
CoUninitialize
CoCreateInstance

oleaut32

VariantClear
SysAllocString
SysAllocStringLen
SysFreeString

Exports

Exports

GetErrorCode
TranslateBufferA
TranslateBufferFromXMLA
TranslateBufferFromXMLW
TranslateBufferW
TranslateFileA
TranslateFileFromXMLA
TranslateFileFromXMLW
TranslateFileW

Sections

.text
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 109KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

97b04c1c3dc2185fec62e16be3142c46

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 194KB - Virtual size: 194KB

.rdata Size: 32KB - Virtual size: 32KB

.data Size: 5KB - Virtual size: 13KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 11KB - Virtual size: 11KB

.text Size: 109KB - Virtual size: 112KB

.text
Size: 194KB - Virtual size: 194KB

.rdata
Size: 32KB - Virtual size: 32KB

.data
Size: 5KB - Virtual size: 13KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 11KB - Virtual size: 11KB

.text
Size: 109KB - Virtual size: 112KB