3cc09dd22879924bfa0ada37d4b9b6dbf6accd7c22ff143a8196627b9ccd0a63

General

Target

3cc09dd22879924bfa0ada37d4b9b6dbf6accd7c22ff143a8196627b9ccd0a63
Size

344KB
MD5

a35d3a67168ebdd1efb8119773b51ceb
SHA1

444863459d72e2b29532e15b855677481968f055
SHA256

3cc09dd22879924bfa0ada37d4b9b6dbf6accd7c22ff143a8196627b9ccd0a63
SHA512

871294f89d1f6e74f7b587082e7a477763c11bb359cde25b2e38db5c7897772e9fd2a36c01e1863534e1321937bc26f764d3d9e8dd83856bf3ac1fafa3183105
SSDEEP

6144:QDWPObzen95UGX+bYwgNUhDnbKq8kJJAO/apUL5esWPsJM:aPen95PObJgNanbp/JJsiesWEJM

Score

N/A

Malware Config

Signatures

Files

3cc09dd22879924bfa0ada37d4b9b6dbf6accd7c22ff143a8196627b9ccd0a63
.dll windows x86

c9dc703f9d394f03b46a7e6737384833

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
TlsSetValue
GetCommandLineA
GetVersionExA
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCurrentThread
TlsAlloc
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
HeapFree
HeapAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
RaiseException
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
UnhandledExceptionFilter
GetACP
GetOEMCP
GetCPInfo
SetFilePointer
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
RtlUnwind
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
IsBadWritePtr
InitializeCriticalSection
LoadLibraryA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetStdHandle
GetTimeZoneInformation
HeapSize
FlushFileBuffers
GetLocaleInfoW
SetConsoleCtrlHandler
CloseHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA

Exports

Exports

dllEntry
vmMain

Sections

.text
Size: 164KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c9dc703f9d394f03b46a7e6737384833

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 164KB - Virtual size: 162KB

.rdata Size: 36KB - Virtual size: 33KB

.data Size: 28KB - Virtual size: 1.9MB

.rsrc Size: 96KB - Virtual size: 95KB

.reloc Size: 16KB - Virtual size: 15KB

.text
Size: 164KB - Virtual size: 162KB

.rdata
Size: 36KB - Virtual size: 33KB

.data
Size: 28KB - Virtual size: 1.9MB

.rsrc
Size: 96KB - Virtual size: 95KB

.reloc
Size: 16KB - Virtual size: 15KB