ca54452491b2626a76bc4639fcad80605a4e4e6900636605ce29e0439b523ce1

Sharing

Copy URL Twitter E-mail

General

Target

ca54452491b2626a76bc4639fcad80605a4e4e6900636605ce29e0439b523ce1
Size

1.3MB
MD5

0bec64878a0c883467b8bbf296a8b710
SHA1

c85c1f61260d85e436e5f4f13706424b4afdc1bf
SHA256

ca54452491b2626a76bc4639fcad80605a4e4e6900636605ce29e0439b523ce1
SHA512

a5bca5e9d894f2aeaa70182d7b0ea6355d1ca583fe725edad0b6564dedadef882355936b98c332d927bd3aba7974b6bfe806705755cc8728ae6829d76ffa8f74
SSDEEP

24576:3azslCsU6Mb1E+mJlanF+21P0l7ovU8dokThBSwq:0giLU8Lg

Score

N/A

Malware Config

Signatures

Files

ca54452491b2626a76bc4639fcad80605a4e4e6900636605ce29e0439b523ce1
.dll windows x86

c4423508b72c9cf3f8e61c2c66ca66fb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
TryEnterCriticalSection
InterlockedIncrement
InterlockedDecrement
WaitForSingleObject
SetEvent
InitializeCriticalSection
CreateEventA
LeaveCriticalSection
EnterCriticalSection
ResetEvent
DeleteCriticalSection
CloseHandle
QueryPerformanceCounter
QueryPerformanceFrequency
InterlockedCompareExchange
InterlockedExchange
InitializeSListHead
InterlockedPopEntrySList
InterlockedFlushSList
InterlockedPushEntrySList
TlsGetValue
TlsSetValue
TerminateThread
Sleep
ExitThread
SetThreadPriority
RaiseException
GetThreadPriority
GetCurrentThreadId
SetThreadAffinityMask
TlsAlloc
TlsFree
CreateThread
SwitchToThread
FreeLibrary
GetCurrentThread
GetLastError
HeapFree
HeapAlloc
GetCommandLineA
HeapReAlloc
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
SetLastError
HeapSize
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
FlushFileBuffers
FatalAppExitA
RtlUnwind
MultiByteToWideChar
ReadFile
SetHandleCount
GetFileType
GetStartupInfoA
SetFilePointer
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount
GetCurrentProcessId
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetConsoleCtrlHandler
InitializeCriticalSectionAndSpinCount
GetLocaleInfoW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
GetModuleHandleA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
SetEndOfFile
GetProcessHeap
GetTimeZoneInformation
CompareStringA
CompareStringW
SetEnvironmentVariableA
LocalAlloc
LocalFree

ws2_32

accept
listen
getsockopt
send
gethostbyname
gethostbyaddr
closesocket
__WSAFDIsSet
socket
bind
recv
WSACleanup
setsockopt
htons
WSAGetLastError
select
htonl
inet_addr
WSAStartup
connect
ioctlsocket
WSASendDisconnect

Exports

Exports

NiGetApexSDK
NxCreateApexSDK
NxGetApexSDK

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c4423508b72c9cf3f8e61c2c66ca66fb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ws2_32

Exports

Exports

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 138KB - Virtual size: 137KB

.data Size: 19KB - Virtual size: 31KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 55KB - Virtual size: 54KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 138KB - Virtual size: 137KB

.data
Size: 19KB - Virtual size: 31KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 55KB - Virtual size: 54KB

.rmnet
Size: 56KB - Virtual size: 60KB