299521b46ff663ceb6569a6f685798c4c1100e5ec053e22d7c8c749d5388ba97

Sharing

Copy URL

Twitter E-mail

General

Target

299521b46ff663ceb6569a6f685798c4c1100e5ec053e22d7c8c749d5388ba97
Size

817KB
MD5

21425a8895b0343e56f82ae791f73ab0
SHA1

cb0077facbbc001ae1d4130ef6bc3d7c7c4920c9
SHA256

299521b46ff663ceb6569a6f685798c4c1100e5ec053e22d7c8c749d5388ba97
SHA512

b87e8e2f8dc05b5b37b1b26393afce10f056b96d2e75ba7bade02f0d3d97fedd451a8853021ffba2209d6c9b1d7b70cc41726f91fdd42c5baa30f764d6224792
SSDEEP

12288:zCR0sfbz8QwSOh+PBFayDTAZju0sBdZ7ATm8zI3jqaBjes/fD:z9GX8JSOM5FayDTAZa0GdZ7G9Emaks/r

Score

N/A

Malware Config

Signatures

Files

299521b46ff663ceb6569a6f685798c4c1100e5ec053e22d7c8c749d5388ba97
.dll windows x86

6121a49841bf6f5b3700c1ebbb28be41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharPrevExA
CharPrevA
CharNextA
CharLowerW
CharLowerA
CharUpperW
CharUpperA

oleaut32

SysFreeString
SysAllocStringByteLen
VariantCopy
VariantClear
SysAllocString

msvcrt

_adjust_fdiv
_initterm
?terminate@@YAXXZ
_onexit
__dllonexit
??1type_info@@UAE@XZ
_except_handler3
_beginthreadex
strcmp
memset
memcmp
_purecall
memmove
memcpy
__CxxFrameHandler
free
_CxxThrowException
malloc

kernel32

InitializeCriticalSection
ReleaseSemaphore
CreateSemaphoreA
ResetEvent
SetEvent
CreateEventA
WaitForSingleObject
VirtualFree
VirtualAlloc
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
FileTimeToLocalFileTime
DeleteCriticalSection
LocalFileTimeToFileTime
GetVersionExA
WaitForMultipleObjects
EnterCriticalSection
LeaveCriticalSection
FileTimeToDosDateTime
DosDateTimeToFileTime
GetModuleHandleA
GetProcAddress
GetSystemInfo
CompareFileTime
WriteFile
ReadFile
MultiByteToWideChar
WideCharToMultiByte
GetLastError
CloseHandle
SetFileAttributesA
DeleteFileA
GetTempPathA
GetTempFileNameA
CreateFileA

Exports

Exports

CreateObject
GetHandlerProperty
GetHandlerProperty2
GetMethodProperty
GetNumberOfFormats
GetNumberOfMethods
SetLargePageMode

Sections

.text
Size: 520KB - Virtual size: 520KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6121a49841bf6f5b3700c1ebbb28be41

Headers

File Characteristics

Imports

user32

oleaut32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 520KB - Virtual size: 520KB

.rdata Size: 66KB - Virtual size: 65KB

.data Size: 18KB - Virtual size: 38KB

.rsrc Size: 76KB - Virtual size: 76KB

.reloc Size: 26KB - Virtual size: 26KB

.text Size: 108KB - Virtual size: 108KB

.text
Size: 520KB - Virtual size: 520KB

.rdata
Size: 66KB - Virtual size: 65KB

.data
Size: 18KB - Virtual size: 38KB

.rsrc
Size: 76KB - Virtual size: 76KB

.reloc
Size: 26KB - Virtual size: 26KB

.text
Size: 108KB - Virtual size: 108KB