d67c88099b89ce5cca8d3a2d7ff58dbbac2d7f0ecadf697e88be8daeec4081ea

Sharing

Copy URL Twitter E-mail

General

Target

d67c88099b89ce5cca8d3a2d7ff58dbbac2d7f0ecadf697e88be8daeec4081ea
Size

936KB
MD5

215e06dfe86f2eb3906e46bd21e3e125
SHA1

1de9bf189c75067a927f624d4bb0a8084f9df3f1
SHA256

d67c88099b89ce5cca8d3a2d7ff58dbbac2d7f0ecadf697e88be8daeec4081ea
SHA512

dd9f20dc865c8e1da48e38e80a2b012e60f49d6d89762a086e250109b857e5fbadbc9bc32f27374520d28e16aacffb49e968388b5b5d57a00e760e22c4a3e722
SSDEEP

24576:e8YoYd3WoXOuFrQZWkIP0biLhyBwKH82fpcx:03xXOu9kIP0bNwKH8ypcx

Score

N/A

Malware Config

Signatures

Files

d67c88099b89ce5cca8d3a2d7ff58dbbac2d7f0ecadf697e88be8daeec4081ea
.dll windows x86

c95aa682b48bd6c69bae5f9f1b4af404

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
SetFilePointer
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
GetFileSize
CopyFileA
ExitProcess
Sleep
WaitForSingleObject
CreateThread
OpenProcess
ReleaseMutex
SetEvent
GetHandleInformation
CreateEventA
CreateMutexA
TerminateProcess
CreateProcessA
OpenFileMappingA
HeapDestroy
WriteFile
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetTickCount
OpenEventA
OpenMutexA
WaitForMultipleObjects
DeviceIoControl
ReadProcessMemory
VirtualProtect
WriteProcessMemory
GetCurrentThreadId
GetCurrentProcessId
GetModuleHandleA
GetCurrentProcess
GetFileAttributesA
SetFileAttributesA
GetVersionExA
GetWindowsDirectoryA
FlushInstructionCache
TerminateThread
HeapAlloc
GetLastError
HeapFree
GlobalAlloc
GetSystemTimeAsFileTime
RtlUnwind
RaiseException
GetCommandLineA
HeapReAlloc
GetACP
GetOEMCP
GetCPInfo
VirtualFree
VirtualAlloc
IsBadWritePtr
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
SetUnhandledExceptionFilter
HeapSize
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
FlushFileBuffers
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
InterlockedExchange
VirtualQuery
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetLocaleInfoA
GetSystemInfo
SetStdHandle
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
QueryPerformanceCounter
GetLocaleInfoW
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
GetProcAddress
FreeLibrary
DeleteFileA
GetModuleFileNameA
CreateFileA
HeapCreate
CloseHandle
SetEndOfFile

user32

wsprintfA
GetKeyboardType

advapi32

RegQueryValueExA
ReportEventA
DeregisterEventSource
RegOpenKeyA
CloseServiceHandle
RegisterEventSourceA
RegEnumValueA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegQueryInfoKeyA
IsValidSecurityDescriptor
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
OpenServiceA
OpenSCManagerA

Exports

Exports

Ox12121212
Ox12345678
_DllMain@12

Sections

.txt2
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 583KB - Virtual size: 583KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.txt
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.txt4
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.txt5
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 587KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

stxt774
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c95aa682b48bd6c69bae5f9f1b4af404

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Exports

Exports

Sections

.txt2 Size: 92KB - Virtual size: 92KB

.text Size: 583KB - Virtual size: 583KB

.txt Size: 7KB - Virtual size: 7KB

.txt4 Size: 11KB - Virtual size: 10KB

.txt5 Size: 512B - Virtual size: 176B

.rdata Size: 127KB - Virtual size: 127KB

.data Size: 55KB - Virtual size: 587KB

.reloc Size: 56KB - Virtual size: 55KB

stxt774 Size: 2KB - Virtual size: 1KB

.txt2
Size: 92KB - Virtual size: 92KB

.text
Size: 583KB - Virtual size: 583KB

.txt
Size: 7KB - Virtual size: 7KB

.txt4
Size: 11KB - Virtual size: 10KB

.txt5
Size: 512B - Virtual size: 176B

.rdata
Size: 127KB - Virtual size: 127KB

.data
Size: 55KB - Virtual size: 587KB

.reloc
Size: 56KB - Virtual size: 55KB

stxt774
Size: 2KB - Virtual size: 1KB