648620e460c36b790b7b120095406b782e5595f78696101682c062fbec5b31c2

Sharing

Copy URL Twitter E-mail

General

Target

648620e460c36b790b7b120095406b782e5595f78696101682c062fbec5b31c2
Size

124KB
MD5

3a2bf138480bc4cd2996d28ef490bc60
SHA1

65215d12c28b5f4f5560263ea43b38110a07d787
SHA256

648620e460c36b790b7b120095406b782e5595f78696101682c062fbec5b31c2
SHA512

18f5dd7bacac8817d5498b7507f2851e93eb9f9bb9a44f33507023d6d9f06264c27ac4ee034b0ab9690a0f53a87eae8ad96f48c0a9d09d8cbd6666a26a25ef46
SSDEEP

1536:GnNfEUOh/HX8CRXUs1xwfjyhnD7c2aF8FjSB2tVCGtug0eel9/5YT3vY4qHrSG:GKUIJXvIW5D7c2aFDCsOgeepYTQ7G

Score

N/A

Malware Config

Signatures

Files

648620e460c36b790b7b120095406b782e5595f78696101682c062fbec5b31c2
.dll windows x86

d3fd31fd796c1512e57616818a685545

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetModuleHandleA
GetSystemInfo
VirtualProtect
HeapSize
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
RtlUnwind
GetSystemTimeAsFileTime
RaiseException
HeapFree
HeapReAlloc
HeapAlloc
ExitProcess
GetCurrentThreadId
GetCommandLineA
GetVersionExA
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
QueryPerformanceCounter
GetCurrentProcessId
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
GetCPInfo
InitializeCriticalSection
InterlockedExchange
VirtualQuery
LoadLibraryA
GetLocaleInfoA

user32

GetWindowTextA
GetClassInfoExA
RegisterClassExA
GetWindowLongA
DefWindowProcA
SendMessageA
PostMessageA
IsWindow
DestroyWindow
CreateWindowExA
SetWindowLongA
SetTimer
UnregisterClassA

Exports

Exports

IPCSocketCreateInterface
IPCSocketInitialize
IPCSocketUninitialize

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d3fd31fd796c1512e57616818a685545

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 32KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 832B

.reloc Size: 8KB - Virtual size: 4KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 36KB - Virtual size: 32KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 832B

.reloc
Size: 8KB - Virtual size: 4KB

.rmnet
Size: 60KB - Virtual size: 60KB