ebae21c893a8de7621ecbc4a528b7f8f9d43845d250ae88e51abfe23fd76e023

General

Target

ebae21c893a8de7621ecbc4a528b7f8f9d43845d250ae88e51abfe23fd76e023
Size

116KB
MD5

45cc783c628e943c0508695616563ce9
SHA1

2457b317cab33947a03d84596f34a8f612809fde
SHA256

ebae21c893a8de7621ecbc4a528b7f8f9d43845d250ae88e51abfe23fd76e023
SHA512

3e8111b5f7009d410ead4820e94c060ba8e81df254a5724d666eefdd5f10825f894c8e9a1961586702470ecbd6bf12f6dcabe8ea78195560221166bbdf876ff5
SSDEEP

3072:J2+H1CQNVGamF5tahDv3fzyBmVZI9pFaSpq:ZXGJ1a1Pfz6c08S

Score

N/A

Malware Config

Signatures

Files

ebae21c893a8de7621ecbc4a528b7f8f9d43845d250ae88e51abfe23fd76e023
.dll windows x86

8a2599236166ef210d715935d754ca28

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
ReleaseMutex
GetCommandLineA
InterlockedDecrement
UnmapViewOfFile
InterlockedIncrement
Sleep
EnterCriticalSection
OpenEventA
InterlockedCompareExchange
WaitForSingleObject
GetModuleFileNameA
MapViewOfFile
CopyFileA
LeaveCriticalSection
CreateDirectoryA
GetModuleHandleA
lstrlenW
lstrlenA
CloseHandle
GetLastError
LocalFree
SetLastError
LoadLibraryA
CreateProcessA
ExitProcess
CreateEventA
GetTickCount

ole32

CoCreateGuid
CoUninitialize
OleCreate
CreateBindCtx
OleSetContainedObject
CoInitialize

user32

GetSystemMetrics
GetClassNameA
SetWindowLongA
DispatchMessageA
FindWindowA
KillTimer
GetParent
SendMessageA
PostMessageA
DestroyWindow
TranslateMessage
SetTimer
GetWindowLongA
PostQuitMessage
CreateWindowExA
DefWindowProcA
RegisterWindowMessageA
GetMessageA

oleaut32

SysAllocString
SysAllocStringLen
SysFreeString

shlwapi

StrStrIW
UrlUnescapeW

advapi32

RegSetValueExA
RegOpenKeyExA
RegCloseKey
RegCreateKeyExA
RegDeleteValueA

Exports

Exports

nsMobileplugin

Sections

.text
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a2599236166ef210d715935d754ca28

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

Exports

Exports

Sections

.text Size: 96KB - Virtual size: 94KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 96KB - Virtual size: 94KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 3KB