c6b4ff99a2e50ca5b444b6b27bc02ccea6e95dd9180f8adc4a03c9ee300585a2

General

Target

c6b4ff99a2e50ca5b444b6b27bc02ccea6e95dd9180f8adc4a03c9ee300585a2
Size

131KB
MD5

8495661a393802abc10a699b572250e0
SHA1

64c52e1550a63893d7b491beed7d660250e22cec
SHA256

c6b4ff99a2e50ca5b444b6b27bc02ccea6e95dd9180f8adc4a03c9ee300585a2
SHA512

ff8871d4a4a0a6c64be77637d468d871bfafac68aa7c938cbb0640f0aa978ee6d6d3a51bbe250cab95aa6f745024deb422ece5c559fdcb8c7f8d4995b4d8d64c
SSDEEP

1536:QNYWfXXkdCmniXy3419SLc0VxgEQO+IWe4A10bM1difysM6B8PLNYf/nWHNTdM:IYRED1Bc+IWegqi1MECxYf/nWHNe

Score

N/A

Malware Config

Signatures

Files

c6b4ff99a2e50ca5b444b6b27bc02ccea6e95dd9180f8adc4a03c9ee300585a2
.dll windows x86

a71cbef37067785042210c794a35d673

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumDateFormatsA
RaiseException
FindFirstFileA
InterlockedCompareExchange
SetThreadContext
FindVolumeMountPointClose
CreateMutexW
CommConfigDialogA
ExpandEnvironmentStringsW
DnsHostnameToComputerNameW
GetProcAddress
MapUserPhysicalPages
GetCurrentProcessId
ReplaceFileA
GetCPInfo
GetCurrentDirectoryW
BindIoCompletionCallback
GetLocaleInfoW
GetSystemDefaultLangID
lstrlenA
OutputDebugStringW
HeapCompact
FindCloseChangeNotification
UpdateResourceW
EnumResourceNamesW
UnlockFile
GetVolumeNameForVolumeMountPointW
SignalObjectAndWait
LoadModule
EnumResourceLanguagesA
GetTimeFormatA
SwitchToThread
SuspendThread
GetSystemInfo
MapViewOfFileEx
GetProfileIntW
GetProfileStringA
FatalAppExitA
CompareStringW
GetAtomNameA
GetThreadContext
SetStdHandle
SetLocalTime
_lread
GetCalendarInfoA
SetCalendarInfoA
SystemTimeToFileTime
GetNumberFormatA
GetSystemTime
FileTimeToSystemTime
DisableThreadLibraryCalls
MoveFileA
GlobalUnfix

advapi32

FreeSid
AllocateAndInitializeSid

Exports

Exports

SyDeactiivateHannndle
SyEndProocSStatee

Sections

.text
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a71cbef37067785042210c794a35d673

Headers

File Characteristics

Imports

kernel32

advapi32

Exports

Exports

Sections

.text Size: 41KB - Virtual size: 40KB

.data Size: 40KB - Virtual size: 67KB

.rsrc Size: 47KB - Virtual size: 47KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 41KB - Virtual size: 40KB

.data
Size: 40KB - Virtual size: 67KB

.rsrc
Size: 47KB - Virtual size: 47KB

.reloc
Size: 2KB - Virtual size: 1KB