e1f0e08d9914b4c00933371ed14ba90b81f7e76a5531651c54de3be96bcd6c72

Sharing

Copy URL Twitter E-mail

General

Target

e1f0e08d9914b4c00933371ed14ba90b81f7e76a5531651c54de3be96bcd6c72
Size

180KB
MD5

41f9fe6f18645eeca25d5aad70a36120
SHA1

15ea7be5ca8637ee3768fa7448abe34de8bc2fc3
SHA256

e1f0e08d9914b4c00933371ed14ba90b81f7e76a5531651c54de3be96bcd6c72
SHA512

de3f8aeb5b9a6910368e19c5c6e8035c0dff6efc05e7336d677b3f4e5001bfcf86ba5f194fcf05b48c236e1e88c205f7d1b95c5ef048535e7d2be995801c3eea
SSDEEP

3072:SKsEEUCdJwH/tW8oBWovG1RjICXEHhG4uCdx:SFdJwftkG1BfYhZ7

Score

N/A

Malware Config

Signatures

Files

e1f0e08d9914b4c00933371ed14ba90b81f7e76a5531651c54de3be96bcd6c72
.dll windows x86

bb315e52051b3b579af412f0da20ac4a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
_lread
_llseek
GlobalUnlock
OpenFile
GlobalAlloc
GlobalLock
_lclose
HeapReAlloc
GetProcessHeap
GetFileType
VirtualFree
HeapCreate
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
EnterCriticalSection
LeaveCriticalSection
HeapFree
GetLastError
CloseHandle
InitializeCriticalSection
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetModuleFileNameA
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
WriteFile
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
HeapAlloc
VirtualAlloc
RtlUnwind
SetStdHandle
FlushFileBuffers
ReadFile
CreateFileA
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
LCMapStringA
LCMapStringW
RaiseException
SetFilePointer
SetEndOfFile

user32

wsprintfA
ReleaseDC
GetDC

gdi32

GetTextExtentPoint32A
CreateFontIndirectA
SelectObject
DeleteObject

hunglyph

ord11
ord9
ord13
ord5

Exports

Exports

HUN_Ps2Pdf

Sections

.text
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bb315e52051b3b579af412f0da20ac4a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

hunglyph

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 82KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 20KB - Virtual size: 52KB

.reloc Size: 8KB - Virtual size: 6KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 84KB - Virtual size: 82KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 20KB - Virtual size: 52KB

.reloc
Size: 8KB - Virtual size: 6KB

.rmnet
Size: 60KB - Virtual size: 60KB