b0afc7d99cf42d96f9c2cfdc3cc9e88cd4b9a1b347ff2f49c53aae1b05a76a58

Sharing

Copy URL Twitter E-mail

General

Target

b0afc7d99cf42d96f9c2cfdc3cc9e88cd4b9a1b347ff2f49c53aae1b05a76a58
Size

547KB
MD5

a3ba3041128e29bce632e3306936747e
SHA1

76f79022002243f0d276dd2cf77c457be0b100d2
SHA256

b0afc7d99cf42d96f9c2cfdc3cc9e88cd4b9a1b347ff2f49c53aae1b05a76a58
SHA512

1317c9eeecbb7cd68ea3765693751897f5fd6384c8705586c799d2567b5d617a90f2cbf6cea539bd6602709eeab74f7271b785be75d9547cd271efab1c2970fd
SSDEEP

6144:5RHyRtDhZr54nexvCj2gQPM81sDWq5IWBUNKguzInnpFuKT214XsKjClkaPVT1hM:PSrhbUegj2gmsyPoUB12EjClrT15Cj

Score

N/A

Malware Config

Signatures

Files

b0afc7d99cf42d96f9c2cfdc3cc9e88cd4b9a1b347ff2f49c53aae1b05a76a58
.dll windows x86

def5ca352aebf0a39660a3c4fbe6071b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

RegisterTypeLi
SysAllocString
SysFreeString
SysStringLen
UnRegisterTypeLi
VarUI4FromStr
LoadTypeLi

user32

CharNextW

advapi32

RegCloseKey
RegSetValueExW
RegQueryValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW

ole32

CoTaskMemAlloc
CoTaskMemFree
PropVariantClear
CoCreateInstance

kernel32

VirtualAlloc
VirtualFree
VirtualQuery
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
lstrcmpiW
lstrlenW
GetModuleFileNameA
TerminateProcess
Sleep
SizeofResource
SetThreadLocale
SetStdHandle
CloseHandle
CreateFileA
EnterCriticalSection
ExitProcess
FindResourceW
FlushFileBuffers
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetACP
GetCPInfo
GetCommandLineA
GetConsoleCP
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentThreadId
GetFileType
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA
GetSystemInfo
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetVersionExA
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadResource
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
RaiseException
RtlUnwind
SetEvent
SetFilePointer
SetHandleCount
SetLastError

Exports

Exports

CallMethod
CallMethodObjOrgs
GetImporter
InPlaceTrueDivide
StringAConcat
WriteUnraisable
_Fast
chunk_error

Sections

.text
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 194KB - Virtual size: 193KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 210KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

def5ca352aebf0a39660a3c4fbe6071b

Headers

File Characteristics

Imports

oleaut32

user32

advapi32

ole32

kernel32

Exports

Exports

Sections

.text Size: 122KB - Virtual size: 121KB

.rdata Size: 194KB - Virtual size: 193KB

.data Size: 210KB - Virtual size: 210KB

.rsrc Size: 13KB - Virtual size: 12KB

.reloc Size: 7KB - Virtual size: 6KB

.text
Size: 122KB - Virtual size: 121KB

.rdata
Size: 194KB - Virtual size: 193KB

.data
Size: 210KB - Virtual size: 210KB

.rsrc
Size: 13KB - Virtual size: 12KB

.reloc
Size: 7KB - Virtual size: 6KB