099dab66f5446a95708f64ea6b1716a18ff18b2b09b173bb884d0ff9315ac37f

Sharing

Copy URL Twitter E-mail

General

Target

099dab66f5446a95708f64ea6b1716a18ff18b2b09b173bb884d0ff9315ac37f
Size

92KB
MD5

6c28b959823fc67080b14bec42d14cd5
SHA1

3563c9f7d29664e9189c46148d228a54ea553acb
SHA256

099dab66f5446a95708f64ea6b1716a18ff18b2b09b173bb884d0ff9315ac37f
SHA512

e3358ccff870710e6353104f33075a6ed017844ca6b0839254a83d1153b8fa78fea7ae088b9709c3692331c5bc92008b570d29f16edda129e2dda6fff1a58cca
SSDEEP

1536:mFnBAK7Qi+glP6HLcErC4Fof1VgRespK9EGR7icCZwbgQGfXbqX4yU3K/vQl2:mFnBAQbYLjC4S91RGxZwbgQwXbq7U369

Score

N/A

Malware Config

Signatures

Files

099dab66f5446a95708f64ea6b1716a18ff18b2b09b173bb884d0ff9315ac37f
.dll windows x86

129a713efd4f63bac9179dc745dc7e9a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetProcAddress
LoadLibraryA
VirtualFree
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
CreateEventA
CloseHandle
ResetEvent
lstrcpyA
SetEvent
InterlockedExchange
CancelIo
Sleep
DeleteFileA
GetLastError
CreateDirectoryA
GetFileAttributesA
lstrlenA
lstrcatA
GetDiskFreeSpaceExA
GetVolumeInformationA
FindClose
LocalFree
FindNextFileA
LocalReAlloc
FindFirstFileA
LocalAlloc
RemoveDirectoryA
GetFileSize
CreateFileA
ReadFile
SetFilePointer
WriteFile
MoveFileA
HeapFree
HeapAlloc
GetModuleFileNameA
GetCurrentProcess
WriteProcessMemory
OpenProcess
TerminateThread
GetWindowsDirectoryA
GetLocalTime
GetTickCount
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
WaitForSingleObject
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
GetStartupInfoA
CreatePipe
DisconnectNamedPipe
TerminateProcess
PeekNamedPipe
WaitForMultipleObjects
GetVersionExA
OpenEventA
SetErrorMode
FreeConsole
Process32Next
RaiseException

msvcrt

memset
_CxxThrowException
??2@YAPAXI@Z
memcmp
free
malloc
_except_handler3
strrchr
strcmp
strcat
strcpy
strncpy
__CxxFrameHandler
strchr
strncat
realloc
atoi
wcstombs
_beginthreadex
calloc
??1type_info@@UAE@XZ
_initterm
_adjust_fdiv
strstr
strlen
_ftol
ceil
memmove
strtok
memcpy
_strnicmp
??3@YAXPAX@Z
_strcmpi

msvcp60

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB

msvfw32

ICSendMessage
ICSeqCompressFrameEnd

Exports

Exports

Ilovebeibei
JustforFun1
JustforFun2
JustforFun3
Rool
ServiceMain
whmtorrent
wwhhmm

Sections

Torrent
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

129a713efd4f63bac9179dc745dc7e9a

Headers

File Characteristics

Imports

kernel32

msvcrt

msvcp60

msvfw32

Exports

Exports

Sections

Torrent Size: 85KB - Virtual size: 84KB

.reloc Size: 6KB - Virtual size: 5KB

Torrent
Size: 85KB - Virtual size: 84KB

.reloc
Size: 6KB - Virtual size: 5KB