938218be1d3caea14236c6a5ebc0ec8aff0ae5e79a72a593cd7ee0c5061bbe69

Sharing

Copy URL Twitter E-mail

General

Target

938218be1d3caea14236c6a5ebc0ec8aff0ae5e79a72a593cd7ee0c5061bbe69
Size

258KB
MD5

7a954d012ceb5f4bab97ff2d8ac44390
SHA1

32f587a1f5abb6772d559c15f357dad74ff4810e
SHA256

938218be1d3caea14236c6a5ebc0ec8aff0ae5e79a72a593cd7ee0c5061bbe69
SHA512

0affff1627e702ead4aae848b198a324ba1b575adda9cbb0c78d19d6a91b533eb750c1c3202637a9d67c8e4fc6e0c010268066382b6ae58a22a4ca186db9dca6
SSDEEP

3072:iB9OJkQIl1I3UJvOreBTg4vRPo5lNJ7+XNtUU/csukP8bpuzMOjLVU7tBr3Jlsr1:iB9OCh1IOOcPWSMOjL4lCrrTwf41NV7

Score

N/A

Malware Config

Signatures

Files

938218be1d3caea14236c6a5ebc0ec8aff0ae5e79a72a593cd7ee0c5061bbe69
.dll windows x86

083e24f49bc373f969df095fa9c349de

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetTempPathA
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime

msvcr80

isdigit
isalpha
sscanf
atof
strncpy
??2@YAPAXI@Z
strcspn
atoi
strspn
sprintf
isprint
vsprintf
_errno
_stat64i32
_purecall
remove
_close
?_open@@YAHPBDHH@Z
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
free
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_except_handler4_common
__clean_type_info_names_internal
strstr
memset
memcpy
__RTDynamicCast
__CxxFrameHandler3
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??0exception@std@@QAE@XZ
??3@YAXPAX@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBDH@Z
rename

Exports

Exports

BIBUtilsGetVersion
BIBUtilsInitialize
BIBUtilsTerminate

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

083e24f49bc373f969df095fa9c349de

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcr80

Exports

Exports

Sections

.text Size: 94KB - Virtual size: 94KB

.rdata Size: 37KB - Virtual size: 37KB

.data Size: 3KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 12KB - Virtual size: 11KB

.text Size: 108KB - Virtual size: 108KB

.text
Size: 94KB - Virtual size: 94KB

.rdata
Size: 37KB - Virtual size: 37KB

.data
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 12KB - Virtual size: 11KB

.text
Size: 108KB - Virtual size: 108KB