c3246214953a08da2c7e414ec8e6612603a5d423978328e277b74307f72fac63

Sharing

Copy URL Twitter E-mail

General

Target

c3246214953a08da2c7e414ec8e6612603a5d423978328e277b74307f72fac63
Size

119KB
MD5

9655c985e4dd59704ea8f9d03694011b
SHA1

81d945a253e58bb3abe9244e714c314b84fb30d3
SHA256

c3246214953a08da2c7e414ec8e6612603a5d423978328e277b74307f72fac63
SHA512

7c08db4d348ab74f9b8dcae2a20b145d01106f61253c3defd1c335f88a4a2552ed007024bfc1d602c7800155d7fc5a196665b18ff19d3231cff915a655603c95
SSDEEP

1536:9A/7GNiuRXjWNnCrv9mL1wfKjczseiPNfhW1nG0eJkD7eBBgmQBB:9AjGQu1CNCrVE6fh4NUxXEkv+gmQn

Score

N/A

Malware Config

Signatures

Files

c3246214953a08da2c7e414ec8e6612603a5d423978328e277b74307f72fac63
.dll windows x86

4d61c16f21c3c008f473d0341058df58

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadCodePtr
GetLocaleInfoA
GetLastError
GetStdHandle
GetSystemInfo
LeaveCriticalSection
ResetEvent
WaitForSingleObject
GetSystemTimeAsFileTime
WaitForMultipleObjects
InterlockedExchange
OpenProcess
GetModuleFileNameA
GetCurrentProcessId
GetEnvironmentStrings
FreeEnvironmentStringsA
CreateEventA
DuplicateHandle
CreateMutexW
InitializeCriticalSection
RtlUnwind
GetCurrentThreadId
CreateThread
ReleaseMutex
DeleteTimerQueueTimer
HeapFree
DeleteCriticalSection
UnhandledExceptionFilter
GetCPInfo
SetUnhandledExceptionFilter
CreateTimerQueueTimer
lstrcpyW
GetTickCount
UnmapViewOfFile
GetACP
HeapAlloc
InterlockedCompareExchange
GetOEMCP
VirtualProtect
SetEvent
WideCharToMultiByte
ConnectNamedPipe
IsBadReadPtr
VirtualQuery
QueryPerformanceCounter
GetStartupInfoA
InterlockedDecrement
DisconnectNamedPipe
InterlockedExchangeAdd
FreeEnvironmentStringsW
GetEnvironmentStringsW
MultiByteToWideChar
GetFileType
LCMapStringA
LoadLibraryA
GetModuleHandleA
WriteFile
SetLastError
ExitThread
CopyFileA
CreateNamedPipeA
HeapDestroy
Sleep

user32

DrawIcon
CreateIconFromResource
wsprintfW
LoadIconA

advapi32

SetSecurityDescriptorDacl
InitializeSecurityDescriptor

Exports

Exports

uvoxj

Sections

.text
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d61c16f21c3c008f473d0341058df58

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 67KB - Virtual size: 66KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 35KB - Virtual size: 64KB

.rsrc Size: 12KB - Virtual size: 11KB

.reloc Size: 1024B - Virtual size: 712B

.text
Size: 67KB - Virtual size: 66KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 35KB - Virtual size: 64KB

.rsrc
Size: 12KB - Virtual size: 11KB

.reloc
Size: 1024B - Virtual size: 712B