9aab3575c0431d614aea1e088dd16101754afa19e47557ed02b61864a3dd64ad

Sharing

Copy URL Twitter E-mail

General

Target

9aab3575c0431d614aea1e088dd16101754afa19e47557ed02b61864a3dd64ad
Size

352KB
MD5

a0742eeeb1aeae91e27334fa613b7cfa
SHA1

ae8481b349a91c59de3cc6d22be0244be9ea7d7e
SHA256

9aab3575c0431d614aea1e088dd16101754afa19e47557ed02b61864a3dd64ad
SHA512

2359393ec296b15bfba22ccb287e97fbf8a79b9a3ad4a6170c0fdfe863671e9d899f127a90f120f3527755b6101b0a874e7f6117fd030f3ae203ed4805b2f19e
SSDEEP

6144:xsHNhTLg19AuL/uTwWrI1aLD+lwpjHwTqPSMhgTaQwtGJ3JBeqt+g0QPekyswLCL:xKNhTLq9rLufhgTaQwtGJDeqh0igTx9K

Score

N/A

Malware Config

Signatures

Files

9aab3575c0431d614aea1e088dd16101754afa19e47557ed02b61864a3dd64ad
.dll windows x86

bfcc590c0b97feae6895b8f886558ce8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
MulDiv
GetFileType
SetFilePointer
WriteFile
SetEnvironmentVariableA
CompareStringW
HeapReAlloc
CompareStringA
GetStringTypeW
GetStringTypeA
LoadLibraryA
LCMapStringA
VirtualAlloc
LCMapStringW
SetStdHandle
HeapAlloc
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
MultiByteToWideChar
FreeEnvironmentStringsA
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
SetHandleCount
GetStdHandle
lstrcpyA
GetStartupInfoA
GetLastError
RaiseException
FreeEnvironmentStringsW
HeapFree
CloseHandle
FlushFileBuffers
GetProcAddress
GetModuleHandleA
HeapDestroy
HeapCreate
VirtualFree
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP

gdi32

GetNearestPaletteIndex

ltkrn13n

ord285
ord271
ord190
ord272
ord192
ord283
ord273
ord189
ord116
ord163
ord282
ord129
ord134
ord100
ord125
ord137
ord141
ord167
ord188
ord191

Exports

Exports

DllMain
fltComment
fltInfo
fltLoad
fltSave

Sections

.text
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 206KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bfcc590c0b97feae6895b8f886558ce8

Headers

File Characteristics

Imports

kernel32

gdi32

ltkrn13n

Exports

Exports

Sections

.text Size: 107KB - Virtual size: 107KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 22KB - Virtual size: 27KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 5KB - Virtual size: 4KB

.text Size: 206KB - Virtual size: 208KB

.text
Size: 107KB - Virtual size: 107KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 22KB - Virtual size: 27KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 5KB - Virtual size: 4KB

.text
Size: 206KB - Virtual size: 208KB