dd96bf86a959676109dcf53a916dfbf82a60742bb1b8134d22cbf0134564057b

Sharing

Copy URL

Twitter E-mail

General

Target

dd96bf86a959676109dcf53a916dfbf82a60742bb1b8134d22cbf0134564057b
Size

98KB
MD5

3d31e52dac51fa27c8fdb052479bfff7
SHA1

317eee63db7c780730853681a9367b35f848f93c
SHA256

dd96bf86a959676109dcf53a916dfbf82a60742bb1b8134d22cbf0134564057b
SHA512

2a74d60afe392cabb55244281e5d7eb00392d5f0add35f9e31375e0d2b3f0aa8de2f277d5caccaaa8d4398ae22a3f3f370e9409e174e81cf6d4107f890e5df62
SSDEEP

1536:v4oQAw7D4RGLUhrLg8BqzT0Byjzd/mahjbBQoDjjUycevmrEr:vSt4RAUdLg80yyjhT92o7UycPYr

Score

N/A

Malware Config

Signatures

Files

dd96bf86a959676109dcf53a916dfbf82a60742bb1b8134d22cbf0134564057b
.dll windows x86

57de85eab6adbd98d0f5a20019671852

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
ExitProcess
SetStdHandle
CloseHandle
SetFilePointer
LoadLibraryA
FlushFileBuffers
WideCharToMultiByte
GetEnvironmentStringsW
WriteFile
GetEnvironmentStrings
FreeEnvironmentStringsW
GetOEMCP
GetACP
FreeEnvironmentStringsA
GetModuleFileNameA
GetStartupInfoA
HeapFree
HeapReAlloc
HeapAlloc
GetCommandLineA
GetProcAddress
GetModuleHandleA
lstrcpyA
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TlsFree
GetCPInfo
VirtualAlloc
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetFileType
GetStdHandle

gdi32

PatBlt
SetTextAlign
GetBitmapBits
DeleteObject
DeleteDC
SelectObject
TextOutA
SetBkMode
SetTextColor
CreateCompatibleDC
CreateDCA
CreateFontA
CreateBitmap

ltkrn12n

ord192
ord109
ord212
ord101
ord196
ord189
ord137
ord163
ord158
ord129
ord188
ord100
ord175
ord141
ord125
ord179
ord190
ord191

Exports

Exports

DllMain
fltComment
fltDeletePage
fltInfo
fltLoad
fltSave

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

57de85eab6adbd98d0f5a20019671852

Headers

File Characteristics

Imports

kernel32

gdi32

ltkrn12n

Exports

Exports

Sections

.text Size: 29KB - Virtual size: 29KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 8KB

.idata Size: 58KB - Virtual size: 57KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 29KB - Virtual size: 29KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 8KB

.idata
Size: 58KB - Virtual size: 57KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB