65fcac54d16cafa097e500f2c7e9b31a8fabb6925deb6b31868f06e5309bd3ad

General

Target

65fcac54d16cafa097e500f2c7e9b31a8fabb6925deb6b31868f06e5309bd3ad
Size

372KB
MD5

40af6225e234b5c16b35f52861138c5b
SHA1

223f5dcc9dc40635d9c147942004ec1657d274f8
SHA256

65fcac54d16cafa097e500f2c7e9b31a8fabb6925deb6b31868f06e5309bd3ad
SHA512

641f1f6df1e0115c2585f5f8e97080d9500caa66982125ae405375d0e55e5935124059f782cba42397e0c1d17d56dd7863b3ed318539265e8729f4648ef47656
SSDEEP

6144:7ZWq9AHoNaX4QEDMxDh+ey5DwM2kfUh7l/A702QdSKMAf/gSOdpKqZ8WORYOGA1F:7ZDAHoNaX4QS6k15Dx2k82ESPSOHKqZ+

Score

N/A

Malware Config

Signatures

Files

65fcac54d16cafa097e500f2c7e9b31a8fabb6925deb6b31868f06e5309bd3ad
.dll windows x86

985e60adde82d7e2e07aeb51a33a12fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetACP
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentVariableA
GetLastError
GetLocaleInfoA
GetLongPathNameA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA
GetSystemTimeAsFileTime
ExitProcess
GetTickCount
GetVersionExA
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByte
LoadLibraryA
LocalAlloc
QueryPerformanceCounter
QueueUserWorkItem
ReadFileEx
VirtualAlloc
WaitForSingleObject
WideCharToMultiByte
lstrlenW
DeleteCriticalSection
CreateProcessA
CreateFileA
GetThreadLocale
CloseHandle

advapi32

RegEnumKeyA
RegCloseKey
LsaFreeMemory
RegOpenKeyExA

ole32

StringFromCLSID
CoTaskMemFree

Exports

Exports

Bufferi
DeleteAdapterConfigurationPort
GeneratePMesh
GetDn
LdapTypeToAdsTypeCopyConstruct
SaveMeshHierarchyToFileW
UVAtlasPartition

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 161KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

985e60adde82d7e2e07aeb51a33a12fb

Headers

File Characteristics

Imports

kernel32

advapi32

ole32

Exports

Exports

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 161KB - Virtual size: 160KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 69KB - Virtual size: 69KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 161KB - Virtual size: 160KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 69KB - Virtual size: 69KB

.reloc
Size: 3KB - Virtual size: 3KB