8e1ac382ed42d86142736f4b52fc616ded304642651cd7d3b43814f33f9b3e5e

General

Target

8e1ac382ed42d86142736f4b52fc616ded304642651cd7d3b43814f33f9b3e5e
Size

184KB
MD5

5104a23a928be69d8b474458f919ab47
SHA1

8354424ecef63c89491396ab39118d3f304e8741
SHA256

8e1ac382ed42d86142736f4b52fc616ded304642651cd7d3b43814f33f9b3e5e
SHA512

d8a60be3dfdd2b91b3face28907f024e440994d03c65279eea4a906e10ac8d60851898823f7f1d542882688bb1e6d38ce799f707b21456f7998d6a504e96aff2
SSDEEP

3072:j7D+jQF9n5qs4ha3i/4PVxQiVU9aE0+z2IcX:j7rxRV+9am7cX

Score

N/A

Malware Config

Signatures

Files

8e1ac382ed42d86142736f4b52fc616ded304642651cd7d3b43814f33f9b3e5e
.dll windows x86

aea237e4ef8e4f78be4542a22cbece04

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

pncrt

__dllonexit
_adjust_fdiv
_initterm
_onexit
toupper
strncpy
strrchr
_purecall
isdigit
strchr
strstr
strncmp
atol
_stricmp
sprintf
malloc
realloc
free
_chsize
_telli64
_lseeki64
??3@YAXPAX@Z
_fstat
_errno
??2@YAPAXI@Z
_strnicmp
_unlink
_strcmpi
_read
_tell
_write
_sopen
_open
_close
_stat
_lseek
_creat

kernel32

DisableThreadLibraryCalls
InterlockedDecrement
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
EnterCriticalSection
GetTempPathA
GetTempFileNameA
CloseHandle
CreateFileA
GetFileSize
CreateFileMappingA
MapViewOfFile
GetLastError
GetSystemInfo
InterlockedIncrement
UnmapViewOfFile

user32

CharNextA
GetSystemMetrics

Exports

Exports

CanUnload
RMACreateInstance
RMAShutdown

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 628B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

aea237e4ef8e4f78be4542a22cbece04

Headers

File Characteristics

Imports

pncrt

kernel32

user32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 628B

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 2KB

.text Size: 120KB - Virtual size: 120KB

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 628B

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 2KB

.text
Size: 120KB - Virtual size: 120KB