1ba3c5f5c1b4b88580c5fca4d7d424a9fe694599647467e2f3a894b341aa65b0

Sharing

Copy URL Twitter E-mail

General

Target

1ba3c5f5c1b4b88580c5fca4d7d424a9fe694599647467e2f3a894b341aa65b0
Size

156KB
MD5

8393c40ee493982d893b66300f9aad40
SHA1

590f59df3024787e75462c5ca0be6c17ef019064
SHA256

1ba3c5f5c1b4b88580c5fca4d7d424a9fe694599647467e2f3a894b341aa65b0
SHA512

9eb054d592ef6c680963a5ca21df0c3a1d2a20641b1fb42664ddaf0106477e5b26346c782873cb4ef116dac26db7bb7b44a8b759057a77ca9491c048c2321d82
SSDEEP

3072:slF+TiN9Cisw5cA9JqUFQNR/jAd8cittkLzIy:MFgiNJdaUFQNR/Y8XsLz

Score

N/A

Malware Config

Signatures

Files

1ba3c5f5c1b4b88580c5fca4d7d424a9fe694599647467e2f3a894b341aa65b0
.dll windows x86

450ffebb43096ac40ed0f269205e1843

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFindExtensionW
AssocQueryStringByKeyW
StrToInt64ExW

kernel32

FreeConsole
CompareStringA
TlsGetValue
CompareStringA
SetTapeParameters
LoadLibraryExW
lstrcpyA
DnsHostnameToComputerNameW
GetCommMask
HeapUnlock
GetNamedPipeHandleStateW
GetWindowsDirectoryW
GetStartupInfoW
AreFileApisANSI
DeleteTimerQueue
WritePrivateProfileSectionW
ReadConsoleOutputCharacterW
HeapValidate
EnterCriticalSection
MapViewOfFile
HeapCreate
GetLastError
FlushConsoleInputBuffer
CompareFileTime
GetSystemDirectoryA
GetFileType
FindFirstChangeNotificationA
GetComputerNameA

gdi32

GetBoundsRect

user32

TranslateMDISysAccel
PtInRect
EnableScrollBar
SetForegroundWindow
SetWindowPos
ReleaseDC

ole32

CoGetClassObject

Exports

Exports

RuntimeClassOpen
RuntimeFrozenCursor
RuntimeMenuFreeware
RuntimeMotionDual

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

450ffebb43096ac40ed0f269205e1843

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

gdi32

user32

ole32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 55KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 4KB

.edata Size: 80KB - Virtual size: 79KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 40KB

.text
Size: 56KB - Virtual size: 55KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 4KB

.edata
Size: 80KB - Virtual size: 79KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 40KB