b96f3d685ac6a7260fff20b2222ddd6342849465f1c91000faff8edea1cb56c6

General

Target

b96f3d685ac6a7260fff20b2222ddd6342849465f1c91000faff8edea1cb56c6
Size

182KB
MD5

667db9bb3d24cbac3e8ba29f18f41e80
SHA1

676fb4d4e9573127bd7c3fb0ab4842a0f305f368
SHA256

b96f3d685ac6a7260fff20b2222ddd6342849465f1c91000faff8edea1cb56c6
SHA512

46f6033e93fbb4563349f1826ad3c5e937efb12b232236fd069adf765cee45a419a9851e99310953023a2e40d1b510c655b2aa1f2b628b8aa95b1fe30063b4d6
SSDEEP

3072:sPTrE+1RZB1fBrWJWgnlMv7lNKAgU2ax7m9EkG4J2A9NtXceoYIl+edPf:wJRH1fBr2tlQpHh2A7e1JLHkl+k3

Score

N/A

Malware Config

Signatures

Files

b96f3d685ac6a7260fff20b2222ddd6342849465f1c91000faff8edea1cb56c6
.dll windows x86

f69047a3998e07914c9b335fc3cfef12

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
CloseHandle
CreateFileW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameW
GetLocalTime
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
GetCurrentThreadId
Sleep
InterlockedExchange

user32

wsprintfW

msvcr90

_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
_except_handler4_common
__clean_type_info_names_internal
_initterm_e
_initterm
free
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
_encoded_null
memset

Exports

Exports

_DllFlushLog@0
_DllInitLogLib@0
_DllOutput@4
_DllUnInitLogLib@0

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 916B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 552B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 173KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f69047a3998e07914c9b335fc3cfef12

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

msvcr90

Exports

Exports

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 916B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 552B

.text Size: 173KB - Virtual size: 176KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 916B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 552B

.text
Size: 173KB - Virtual size: 176KB