37eb422e956132e4b8b0599265a5bfb0620ad61d296bd4e5158e154303991645

Sharing

Copy URL Twitter E-mail

General

Target

37eb422e956132e4b8b0599265a5bfb0620ad61d296bd4e5158e154303991645
Size

78KB
MD5

5b28fa93649978996e1843198fa6a4df
SHA1

bf11164f57392a4cd75a4801b769b048186b286c
SHA256

37eb422e956132e4b8b0599265a5bfb0620ad61d296bd4e5158e154303991645
SHA512

5f4efd29fb60b338ae86688130ce2ab4d429f654d89b2f5a87ae784790da734aa5533065b54be9b7eee4b853c18f79a5b18f789cdabed400b1aa8743cdac23b5
SSDEEP

1536:N9wJg+/IiWzvmUmV76Od3UvCFsMnl/HcLo9lLQIErrJ49fuBwUdXy:N+/Ii6uP7kMnl/HcLqQrrrgf8w+y

Score

N/A

Malware Config

Signatures

Files

37eb422e956132e4b8b0599265a5bfb0620ad61d296bd4e5158e154303991645
.dll windows x86

1da5918457b4e95b99c23ba7da4c8db7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler4_common
_amsg_exit
_initterm
free
malloc
_XcptFilter
memcpy
swprintf_s
memset
wcscpy_s
wcscat_s

user32

LoadStringW

winmm

DefDriverProc
GetDriverModuleHandle
DriverCallback

advapi32

RegEnumKeyW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW
RegOpenKeyW

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
InterlockedCompareExchange
Sleep
InterlockedExchange
WriteFileEx
SetWaitableTimer
CreateWaitableTimerW
GetTickCount
InitializeCriticalSection
QueryPerformanceCounter
LocalAlloc
CreateFileW
CloseHandle
GetOverlappedResult
CancelIo
WaitForSingleObject
GetLastError
DeviceIoControl
CreateEventW
DisableThreadLibraryCalls
GetProcessHeap
FreeLibrary
GetProcAddress
LocalFree
LoadLibraryW
lstrlenW
ClearCommError
InterlockedDecrement
LeaveCriticalSection
SetEvent
EnterCriticalSection
ReadFileEx
InterlockedIncrement
ResetEvent
HeapFree
HeapAlloc
QueueUserAPC
PurgeComm
DeleteCriticalSection
ExitThread
WaitForSingleObjectEx
CreateThread

Exports

Exports

DriverProc
widMessage
wodMessage

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1da5918457b4e95b99c23ba7da4c8db7

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

user32

winmm

advapi32

kernel32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 13KB

.data Size: 60KB - Virtual size: 63KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 13KB - Virtual size: 13KB

.data
Size: 60KB - Virtual size: 63KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB