3eddef18a197bcaa1a07e0103d839d6c28439a1313fba7febfb94fca59ad7bd2

Sharing

Copy URL

Twitter E-mail

General

Target

3eddef18a197bcaa1a07e0103d839d6c28439a1313fba7febfb94fca59ad7bd2
Size

228KB
MD5

4e884b22da88694c27474f17e34b6020
SHA1

fc8518b113a9445803a950f22d86c5f7d1ae9e71
SHA256

3eddef18a197bcaa1a07e0103d839d6c28439a1313fba7febfb94fca59ad7bd2
SHA512

a6942c112a778880a4cd04e6a9a833f3073724c31d74a799fb3d7a964f849e520cbfeea97f220a47fe73fc70670982c148f72ffb683aa77352cf9d4705fd9b58
SSDEEP

6144:sudAcoUrATt5dUsZrZXG0GP+Rg1f6oeAVONjaTLsthE:siSt0wdXG7+RgniNdrE

Score

N/A

Malware Config

Signatures

Files

3eddef18a197bcaa1a07e0103d839d6c28439a1313fba7febfb94fca59ad7bd2
.dll windows x86

4332aacd259d09ae890838bbf34e2d7e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpA
lstrcpyA
GetPrivateProfileStringA
DeviceIoControl
lstrlenA
CompareStringW
CompareStringA
CloseHandle
CreateFileA
GetLastError
LocalAlloc
lstrcatA
LocalFree
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
MultiByteToWideChar
SetEnvironmentVariableA

user32

wsprintfA

advapi32

RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegCreateKeyExA

setupapi

SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA

Exports

Exports

BtChk_CheckDevice
BtChk_CheckEval
BtChk_GetEval
BtChk_GetVersion
DllMain

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4332aacd259d09ae890838bbf34e2d7e

Headers

File Characteristics

Imports

kernel32

user32

advapi32

setupapi

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 2KB

.text Size: 160KB - Virtual size: 160KB

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 2KB

.text
Size: 160KB - Virtual size: 160KB