a06c4bdc99930334bd1e6884331a4153825ca946ca4d45ca1e3ddbee4f99206e

General

Target

a06c4bdc99930334bd1e6884331a4153825ca946ca4d45ca1e3ddbee4f99206e
Size

273KB
MD5

a0fbb19afe2ecb6ea345f2cc781c3b20
SHA1

4aca5eb09da3b19e42aeed8e34af88acc1204617
SHA256

a06c4bdc99930334bd1e6884331a4153825ca946ca4d45ca1e3ddbee4f99206e
SHA512

4e797b2ac115aaf0f704626468e82d1fb9cc9bdc6411ab4f6f54d7fa8dfb16bec4880ffb6660a7f943e890725583365f266fff67ec758eeaa6658c6a50849491
SSDEEP

6144:JC3sSCDvnHqm8VJyB60OHyLC7vlfauqLAHwuflel9Z/+VmEeE5KlgDt/:J5Jvgc2HywtCuCGwuNel95+jeWc

Score

N/A

Malware Config

Signatures

Files

a06c4bdc99930334bd1e6884331a4153825ca946ca4d45ca1e3ddbee4f99206e
.dll windows x86

ac118ce315e7ef958149f4703352d64d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetLastError
GetSystemTimeAsFileTime
HeapReAlloc
HeapAlloc
FreeLibraryAndExitThread
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
SetLastError
TerminateProcess
GetTickCount
QueryPerformanceCounter
Sleep
LoadLibraryW
GetVolumeInformationW
OutputDebugStringW
WideCharToMultiByte
lstrcmpA
LocalFree
DeleteCriticalSection
CloseHandle
lstrlenW
ReleaseMutex
WriteFile
GetLocalTime
SetEndOfFile
GetFileSize
GetSystemWindowsDirectoryA
CreateFileW

user32

GetClipCursor
GetClassInfoA

advapi32

RegSetValueExA
RegCreateKeyExW
RegDeleteValueW
RegQueryInfoKeyW
RegEnumValueW
RegEnumKeyW
RegSetValueExW
RegQueryValueExW
RegEnumValueA
RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA

msvcrt

memset
malloc

Exports

Exports

ActionOperationFlagsNot
ClusterInInitializationInstalledFor
MSMQOCM
ProductTypeKeyOpenedA
TheIsTheAction

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 221KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac118ce315e7ef958149f4703352d64d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 21KB

.data Size: 28KB - Virtual size: 156KB

.rsrc Size: 221KB - Virtual size: 220KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 22KB - Virtual size: 21KB

.data
Size: 28KB - Virtual size: 156KB

.rsrc
Size: 221KB - Virtual size: 220KB

.reloc
Size: 1KB - Virtual size: 1KB