de81e03d181734d7eadf4ba0006fb0b0b81b93803af7b698d56839eb4ae1ad11

General

Target

de81e03d181734d7eadf4ba0006fb0b0b81b93803af7b698d56839eb4ae1ad11
Size

98KB
MD5

07550250aa3f777d91c98b99ab024f70
SHA1

75c34d40aed066df9afc3cf427fc507b3e3a5930
SHA256

de81e03d181734d7eadf4ba0006fb0b0b81b93803af7b698d56839eb4ae1ad11
SHA512

4881f5c5927ed5a626c69ecf776349f3147542762cd2acc1bf09d6ae05bdc4999d517be981b8ce1740af6a826a7d765cb83649a24f1b6b71919e65b2f3ee6df9
SSDEEP

1536:PpZf4aK+O28uC2qNqQ84Ynt7y8OCyqzMtI3WxoBOzLwVaxsKq3i1TMD:PPf4aK+R2NYt3ORqotI0ZLyaxE3iy

Score

N/A

Malware Config

Signatures

Files

de81e03d181734d7eadf4ba0006fb0b0b81b93803af7b698d56839eb4ae1ad11
.dll windows x86

45e5925388bb4e1c885340ff294265bf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedCompareExchange
GetFileAttributesA
GetModuleHandleA
GetFileType
CreateEventW
GetCPInfoExW
ReplaceFileW
WritePrivateProfileStructA
GetModuleFileNameA
GetFullPathNameW
GetPrivateProfileSectionW
DeleteFileA
VirtualAlloc
CallNamedPipeA
AssignProcessToJobObject
MapViewOfFile
SetConsoleWindowInfo
GetBinaryTypeW
IsSystemResumeAutomatic
GetProcessVersion
GetVolumePathNameW
EnumResourceTypesW
SetThreadLocale
lstrcmpiW
GetStdHandle
FillConsoleOutputCharacterW
OpenJobObjectW
CreateJobObjectA
GetDriveTypeW
GetConsoleMode
GetComputerNameW
GetNumberFormatW
GetShortPathNameA
AllocConsole
BuildCommDCBW
GetLargestConsoleWindowSize
ConvertDefaultLocale
GlobalAddAtomW
RequestDeviceWakeup
ExpandEnvironmentStringsA
WriteFileEx
lstrcmpiA

msvcrt

isalnum
isgraph
srand

Exports

Exports

dty78rtdhjd
iRSvTOECnbruRkUgXkA
vrnbAITfjazyJYK

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ydata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45e5925388bb4e1c885340ff294265bf

Headers

File Characteristics

Imports

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 56KB

.data Size: 6KB - Virtual size: 5KB

.tdata Size: 15KB - Virtual size: 14KB

.ydata Size: 18KB - Virtual size: 18KB

.reloc Size: 1024B - Virtual size: 92KB

.text
Size: 56KB - Virtual size: 56KB

.data
Size: 6KB - Virtual size: 5KB

.tdata
Size: 15KB - Virtual size: 14KB

.ydata
Size: 18KB - Virtual size: 18KB

.reloc
Size: 1024B - Virtual size: 92KB