f90f207a9fac1566a7c124df573e4748098afe0c75f56bc854849e88c1cfb0dd

General

Target

f90f207a9fac1566a7c124df573e4748098afe0c75f56bc854849e88c1cfb0dd
Size

158KB
MD5

204b10e676f38a125a6d37ddbcea4842
SHA1

bd32de91217fa372866b20bd121667d87f5fd221
SHA256

f90f207a9fac1566a7c124df573e4748098afe0c75f56bc854849e88c1cfb0dd
SHA512

92bb888b5d43d95bc393c6d7e968dce9cf9abfbfb9430f6b9346b687daf011f732ce10c31d282bf18ac0e591a2fc8251cf71d7248055af72702b3a0fdbeded12
SSDEEP

3072:9RR86q2QvUOqgVQCBImOzg5A9sHaUJpMNCjHh942j2PJ/q11IvfGXtsLev:JRQb9Z1IULcCjHh9rj2PFq19GL

Score

N/A

Malware Config

Signatures

Files

f90f207a9fac1566a7c124df573e4748098afe0c75f56bc854849e88c1cfb0dd
.dll windows x86

9f8014414d43866745a1e89fbbc6eba2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CancelIo
CloseHandle
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FindClose
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessAffinityMask
GetThreadContext
GetThreadPriority
InterlockedDecrement
InterlockedExchangeAdd
LoadLibraryA
OpenProcess
QueryInformationJobObject
ReleaseSemaphore
ResetEvent
ResumeThread
SetEvent
SetLastError
SetThreadContext
SetThreadPriority
Sleep
SuspendThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
VirtualProtect
WaitForMultipleObjects
WaitForSingleObject

shell32

SHGetFolderPathW
SHFormatDrive

wsock32

WSASetLastError
WSAGetLastError

msvcrt

__dllonexit
_adjust_fdiv
_beginthreadex
_endthreadex
_errno
_ftime
_initterm
_onexit
_setjmp3
_wcreat
calloc
exit
free
longjmp
malloc

Exports

Exports

ADeviceStartPlay
DeleteTempFile
FMissingCert
OpenFileStreamWithFlagsW
PVDecodeObject
PszSkipWhiteA

Sections

.text
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f8014414d43866745a1e89fbbc6eba2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shell32

wsock32

msvcrt

Exports

Exports

Sections

.text Size: 55KB - Virtual size: 54KB

.rdata Size: 89KB - Virtual size: 88KB

.data Size: 7KB - Virtual size: 7KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 55KB - Virtual size: 54KB

.rdata
Size: 89KB - Virtual size: 88KB

.data
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 6KB - Virtual size: 5KB