5443ee54a532846da3182630e2bb031f54825025700bcd5f0e34802e7345c7b2_dump7_0x003e0000

General

Target

5443ee54a532846da3182630e2bb031f54825025700bcd5f0e34802e7345c7b2_dump7_0x003e0000
Size

16KB
MD5

cb230030e9dc3a7e0cebaeea6070c165
SHA1

9da8c7ef47a78181ad5a14d6c7f275c12a95c4c5
SHA256

a9bf63b4ba61a2c550e82c96b502d36c18a820fed5d58e0dc8994514b5407f69
SHA512

1e85b8d9b34f8a21c22f6932995615894e6bc3c816ca441146fbefdfc90c7b4a1a75a94241222e1a1e8d481a3c9f131558f7680dc273f05213ef444c1dbca147
SSDEEP

192:dou7dw8o5sBDBwvfm8BM8exELtOqXyA8fWwFGdkmyibChzM+CS3afp3T/P:dHdnJBDBwtBbxOtAaFQyibChZKfp3

Score

N/A

Malware Config

Signatures

Files

5443ee54a532846da3182630e2bb031f54825025700bcd5f0e34802e7345c7b2_dump7_0x003e0000
.dll windows x86

dc07165bf16b978743ee62020a164b10

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
CreateThread
lstrlenW
Sleep
SetErrorMode
HeapAlloc
GetProcessHeap
VirtualFreeEx
VirtualAllocEx
GetCurrentProcess
lstrcpyW
CloseHandle
GetLocalTime
lstrcatW
GetCurrentProcessId
GetComputerNameA
GetTickCount
WideCharToMultiByte
GlobalFree
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
lstrlenA
HeapFree

msvcrt

swprintf
memset
rand
srand
_wtoi
wcsstr
mbstowcs
wcstombs
strcat
strcpy
free
strtoul
calloc
strlen
strcmp
strncpy
strchr
sprintf
memcpy

advapi32

GetUserNameA

winhttp

WinHttpCloseHandle
WinHttpConnect
WinHttpSetOption
WinHttpSetTimeouts
WinHttpOpen
WinHttpReadData
WinHttpQueryHeaders
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpAddRequestHeaders
WinHttpTimeFromSystemTime
WinHttpOpenRequest
WinHttpGetProxyForUrl
WinHttpGetIEProxyConfigForCurrentUser

ws2_32

WSAAddressToStringA
inet_ntoa
WSASetLastError
WSAStartup
htonl
getservbyname
htons
inet_addr
WSAGetLastError
gethostbyname
gethostbyaddr
ntohs
getservbyport

Exports

Exports

PrintF

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 660B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dc07165bf16b978743ee62020a164b10

Headers

File Characteristics

Imports

kernel32

msvcrt

advapi32

winhttp

ws2_32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 4KB

.reloc Size: 1024B - Virtual size: 660B

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 4KB

.reloc
Size: 1024B - Virtual size: 660B