bd6ea74393f7c533f31d39e3dda6dc612fae6c5b871e98b40f2899491a7971ff

General

Target

bd6ea74393f7c533f31d39e3dda6dc612fae6c5b871e98b40f2899491a7971ff
Size

360KB
MD5

54657f5d776accd3c3757e5cf2451fa6
SHA1

00480cd3b73602ac43dfff0f0c124ef714fa16c6
SHA256

bd6ea74393f7c533f31d39e3dda6dc612fae6c5b871e98b40f2899491a7971ff
SHA512

a74e29e1f081662bc7bc8ccc0daf1efff37183a36c66f90ff5a5e8bfdef446e8ab7df91a91f6ef05115d8144329521829c7d26dcce12160cc4c511d450f76301
SSDEEP

6144:sml08rGUQRPTTuU+NAOeYhzLw1I/u1tHxgIh5nQCrOOOkok:lScGUQRPTTu7sY5U1Im3pHQCaOOfk

Score

N/A

Malware Config

Signatures

Files

bd6ea74393f7c533f31d39e3dda6dc612fae6c5b871e98b40f2899491a7971ff
.dll windows x86

68bc303a336f2bed4031f36fc04ac96d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
VirtualQuery
HeapAlloc
GetProcessHeap
IsBadCodePtr
SetUnhandledExceptionFilter
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcAddress
GetModuleHandleA
ExitProcess
TerminateProcess
GetCurrentProcess
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
LeaveCriticalSection
EnterCriticalSection
RtlUnwind
InterlockedExchange
RaiseException
SetFilePointer
GetACP
GetOEMCP
GetCPInfo
InitializeCriticalSection
LoadLibraryA
LCMapStringA
MultiByteToWideChar
LCMapStringW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetStdHandle
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
VirtualProtect
VirtualAlloc
GetSystemInfo
FlushFileBuffers
CloseHandle

tier0

Warning
GetCPUInformation
g_pMemAlloc

Exports

Exports

CreateInterface
_ftol3

Sections

.text
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

68bc303a336f2bed4031f36fc04ac96d

Headers

File Characteristics

Imports

kernel32

tier0

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 98KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 12KB - Virtual size: 51KB

.reloc Size: 16KB - Virtual size: 14KB

.text Size: 196KB - Virtual size: 196KB

.text
Size: 100KB - Virtual size: 98KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 12KB - Virtual size: 51KB

.reloc
Size: 16KB - Virtual size: 14KB

.text
Size: 196KB - Virtual size: 196KB