ee62e4b9e90e1e64b14a18693290b7b11144dcfe78df9a589b07fc979a0ea27a

General

Target

ee62e4b9e90e1e64b14a18693290b7b11144dcfe78df9a589b07fc979a0ea27a
Size

1.7MB
MD5

49ba0d38a6fc18df23194390d1d17f05
SHA1

221288237752768024b1b93cf2260e4c7a519e4f
SHA256

ee62e4b9e90e1e64b14a18693290b7b11144dcfe78df9a589b07fc979a0ea27a
SHA512

e705e1f69ecd8281d914ad310ce7f385e5bb8cd08a710e90a855963b2d3bf02b19e1b91b178e683faac5ba59071844f59cf780a4ffef46abb8e3022e7278d42c
SSDEEP

24576:aN2Wl+tdqaF5EHzP9NT6drqB53WeBszN2chyhZgG9nddKF:aN2WMIHzP9NT6drq7GeWz5yhd/4F

Score

N/A

Malware Config

Signatures

Files

ee62e4b9e90e1e64b14a18693290b7b11144dcfe78df9a589b07fc979a0ea27a
.dll windows x86

a318593136a81d77a15ae30a1bd499a7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
HeapAlloc
HeapFree
LoadLibraryA
GetLastError
GetTickCount
GetProcAddress
GetVersionExW
GetNativeSystemInfo
GetCurrentProcessId
IsBadReadPtr
GetCurrentProcess
GetModuleHandleA
Sleep
GetModuleFileNameW
GetTempPathW
GetEnvironmentVariableW
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
GetCommandLineA
GetCurrentThreadId
InterlockedDecrement
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
HeapSize
RaiseException
GetStdHandle
WriteFile
IsDebuggerPresent
InterlockedIncrement
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
SetLastError
WideCharToMultiByte
GetFileType
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameA
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
LoadLibraryExW
HeapReAlloc
RtlUnwind
OutputDebugStringW
LoadLibraryW
LCMapStringW
GetConsoleCP
GetConsoleMode
SetFilePointerEx
SetStdHandle
WriteConsoleW
FlushFileBuffers
CreateFileW
CloseHandle

Exports

Exports

DllInstall
__apicall
_init
_uninstall
serv

Sections

.text
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a318593136a81d77a15ae30a1bd499a7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 267KB - Virtual size: 267KB

.rdata Size: 60KB - Virtual size: 60KB

.data Size: 1.3MB - Virtual size: 1.3MB

.reloc Size: 17KB - Virtual size: 16KB

.text
Size: 267KB - Virtual size: 267KB

.rdata
Size: 60KB - Virtual size: 60KB

.data
Size: 1.3MB - Virtual size: 1.3MB

.reloc
Size: 17KB - Virtual size: 16KB