c26e843390cce1fb861268157c549b7f25b746b9ceb08bfd70fd0943dc3ad267

Sharing

Copy URL Twitter E-mail

General

Target

c26e843390cce1fb861268157c549b7f25b746b9ceb08bfd70fd0943dc3ad267
Size

228KB
MD5

31b5b5deebb7e3163f80007335f32aa0
SHA1

42e8d97c9f685673dd8e6d0fa35786e10af2819b
SHA256

c26e843390cce1fb861268157c549b7f25b746b9ceb08bfd70fd0943dc3ad267
SHA512

ca19a617e937b70ce09ade7f3ddf10547be2cf0a1d77647feb6f6d1f71db7eccb45c3f736f2c7a5b3fbd5a3cd0a32c073eaa650b7e69b04066ce770a71275c85
SSDEEP

3072:7ZWalLP8c9e6GpVWiINE5k/pahiE+Pk+nA7TvWNhkx2+C0iVpYcPHmhIXEnT/:7ZWKLkIeAZEMk+nQIVpYcPGhIUT/

Score

N/A

Malware Config

Signatures

Files

c26e843390cce1fb861268157c549b7f25b746b9ceb08bfd70fd0943dc3ad267
.dll windows x86

e83d590cad90f12af0fa81b5150da014

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

u32base

buf32Line
buf32Free
buf32Alloc
buf32DupBuf
mem32Fill
buf32GetWHU
buf32MergeMem
buf32GetMem
buf32PointAddr
buf32CellLock
buf32Lock
buf32CellUnlock
buf32GetInfo
buf32Unlock

u32comm

c32ResetDLLErrInfo
GetCPUName
IsSupportMMX
c32SetDLLErrInfo
u32IsEscPressed

kernel32

TerminateProcess
CompareStringA
RaiseException
GetLocaleInfoW
GetLocaleInfoA
FlushFileBuffers
LCMapStringA
LCMapStringW
GetStringTypeA
HeapReAlloc
SetFilePointer
SetStdHandle
CloseHandle
SetEnvironmentVariableA
CompareStringW
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
LocalFree
LocalUnlock
LocalLock
LocalAlloc
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetOEMCP
GetStringTypeW
ExitProcess
MultiByteToWideChar
GetCurrentProcess
HeapCreate
HeapDestroy
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
GetCPInfo
GetACP
HeapAlloc
FreeEnvironmentStringsA
InitializeCriticalSection
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
HeapFree
EnterCriticalSection
LeaveCriticalSection
LoadLibraryA

Exports

Exports

u32FeAction
u32FeGetInfo

Sections

.text
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e83d590cad90f12af0fa81b5150da014

Headers

File Characteristics

Imports

u32base

u32comm

kernel32

Exports

Exports

Sections

.text Size: 147KB - Virtual size: 147KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 13KB

.idata Size: 2KB - Virtual size: 2KB

.reloc Size: 7KB - Virtual size: 6KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 147KB - Virtual size: 147KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 13KB

.idata
Size: 2KB - Virtual size: 2KB

.reloc
Size: 7KB - Virtual size: 6KB

.rmnet
Size: 56KB - Virtual size: 60KB