95f4b2b502e51151d56bb9a9f2fec36154f43a63786cec6c98ca26f592c4c188

General

Target

95f4b2b502e51151d56bb9a9f2fec36154f43a63786cec6c98ca26f592c4c188
Size

136KB
MD5

7acb5b85e1a25b623c8c262f9e46ac55
SHA1

dca40136acdaa9dfc8ea29592342f7cdb44bd004
SHA256

95f4b2b502e51151d56bb9a9f2fec36154f43a63786cec6c98ca26f592c4c188
SHA512

85c7d8300aefc3bc4189f8888ae360075f42f7ccfe4530ff32a66072809305fb2b40659edb584dfa62e4ee05ef3a0f69be0753c70b7cd60fdf41daadccdbeb56
SSDEEP

3072:nOW1JEKvrZhj6pqItYGePHOFFsmpUhBslBhWpYwJ0sFvYZ:nX/r/YWRuFGmpUIbwJ/Fvo

Score

N/A

Malware Config

Signatures

Files

95f4b2b502e51151d56bb9a9f2fec36154f43a63786cec6c98ca26f592c4c188
.dll windows x86

33359008ec43940cb1a960b18eb667c7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
UnmapViewOfFile
ExitProcess
GetLastError
CloseHandle
EnterCriticalSection
ReleaseMutex
CreateProcessA
GetCommandLineA
CreateEventA
LoadLibraryA
InterlockedIncrement
InterlockedCompareExchange
CreateDirectoryA
GetProcAddress
CopyFileA
LeaveCriticalSection
GetTickCount
SetLastError
lstrlenA
MapViewOfFile
InterlockedDecrement
GetModuleFileNameA
OpenEventA
Sleep
LocalFree
WaitForSingleObject
GetModuleHandleA

ole32

CoCreateGuid
CreateBindCtx
OleCreate
CoInitialize
OleSetContainedObject
CoUninitialize

user32

GetParent
DispatchMessageA
DefWindowProcA
GetClassNameA
KillTimer
GetMessageA
GetWindowLongA
SendMessageA
CreateWindowExA
TranslateMessage
FindWindowA
SetWindowLongA
PostQuitMessage
SetTimer
GetSystemMetrics
DestroyWindow
RegisterWindowMessageA
PostMessageA

oleaut32

SysFreeString
SysAllocString
SysAllocStringLen

advapi32

RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegDeleteValueA
RegSetValueExA

Exports

Exports

CatDBNetppm

Sections

.text
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

33359008ec43940cb1a960b18eb667c7

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

advapi32

Exports

Exports

Sections

.text Size: 116KB - Virtual size: 112KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 116KB - Virtual size: 112KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 3KB