c14a3a93c221946067a77dbfca69e20addd47db91c85135752429ced4dc77c5e

General

Target

c14a3a93c221946067a77dbfca69e20addd47db91c85135752429ced4dc77c5e
Size

32KB
MD5

6358ecba6d56c577a8db169233306e1c
SHA1

7d0a844779cda739f5c8863a5a552239eabc9ec0
SHA256

c14a3a93c221946067a77dbfca69e20addd47db91c85135752429ced4dc77c5e
SHA512

d2331be784fc857a9c387f0cfe428d9f2063161bdd908d51495ea6870578f224657e7b6e759f9e5ee394d55f96a6e462d43ba618b29f4480b00573d0402a6dc9
SSDEEP

384:ir3AOAXQaoYHM7uv2P3b4RluAagQyuQIlW2wrJrhqU52NWTm87:EQ+aoYHMiv2P8X+bl2N48

Score

N/A

Malware Config

Signatures

Files

c14a3a93c221946067a77dbfca69e20addd47db91c85135752429ced4dc77c5e
.dll windows x86

757285f65eb7f2803d64ee93bdce84a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesA
MoveFileA
GetDriveTypeA
GetVersionExA
GlobalMemoryStatus
FindNextFileA
DeleteFileA
FindFirstFileA
lstrcpyA
ExitProcess
FreeLibrary
DisableThreadLibraryCalls
GetSystemDirectoryA
CreateDirectoryA
Sleep
LoadLibraryA
GetProcAddress
FindClose
CreateThread

user32

MessageBoxA
wsprintfA

advapi32

RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA

shell32

SHFileOperationA
ShellExecuteA

ws2_32

htons
connect
inet_addr
gethostname
setsockopt
WSACleanup
shutdown
WSAStartup
closesocket
recv
WSAGetLastError
socket
__WSAFDIsSet
select
gethostbyname
inet_ntoa

msvcrt

_adjust_fdiv
malloc
_initterm
free
_beginthreadex
strstr
fseek
ftell
_mbsrchr
fread
fopen
fwrite
fclose
strcmp
strcat
??2@YAPAXI@Z
sprintf
__CxxFrameHandler
strcpy
atoi
strlen
memcpy
memset

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 786B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

757285f65eb7f2803d64ee93bdce84a3

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ws2_32

msvcrt

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 9KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 10KB

.rsrc Size: 4KB - Virtual size: 960B

.reloc Size: 4KB - Virtual size: 786B

.text
Size: 12KB - Virtual size: 9KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 10KB

.rsrc
Size: 4KB - Virtual size: 960B

.reloc
Size: 4KB - Virtual size: 786B