d6e2c486d176151a4f565c00a91d1691f84da66f4d2a56496406e0b74af39a09

Sharing

Copy URL Twitter E-mail

General

Target

d6e2c486d176151a4f565c00a91d1691f84da66f4d2a56496406e0b74af39a09
Size

508KB
MD5

824ee1f5d042bb25205c980858700a00
SHA1

68334be7712bbf03cec9d8500e7adc84e325d86b
SHA256

d6e2c486d176151a4f565c00a91d1691f84da66f4d2a56496406e0b74af39a09
SHA512

e0b4a254a160e62ce3013928d037b3157127466ffddf01df4e2ee70c4a010e66359d8542008355efd18b5984258675344f2ef7fa6dfb98147b0166fd284a0784
SSDEEP

6144:giVgTbpfPSqFOALYZtrpaacTp04FHaagCSW6JQQIQvP3m8xEkxx2JuZAS4:guA5SqNraK0dMAJ8s3mQxx2Jxr

Score

N/A

Malware Config

Signatures

Files

d6e2c486d176151a4f565c00a91d1691f84da66f4d2a56496406e0b74af39a09
.dll windows x86

c22385ae0f9f2cbbb7eadc482a358052

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedExchange
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
IsDebuggerPresent

msvcp80

?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$allocator@D@std@@QAE@ABV01@@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$allocator@D@std@@QAE@XZ

msvcr80

_CIatan
strncpy
??2@YAPAXI@Z
sprintf
memset
_CIsqrt
_stricmp
rand
atoi
_invalid_parameter_noinfo
memmove_s
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABV01@@Z
ceil
floor
fgets
_CxxThrowException
fscanf
fclose
fread
fopen
_findnext32
_findfirst32
strcpy_s
strncmp
_strupr
atof
toupper
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_except_handler4_common
?terminate@@YAXXZ
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
free
malloc
??_V@YAXPAX@Z
__CxxFrameHandler3
_time32
srand
_purecall
??3@YAXPAX@Z
fseek
_strnicmp
_strlwr

Exports

Exports

ObjectDLLSetup
SetMasterDatabase

Sections

.text
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c22385ae0f9f2cbbb7eadc482a358052

Headers

File Characteristics

Imports

kernel32

msvcp80

msvcr80

Exports

Exports

Sections

.text Size: 96KB - Virtual size: 94KB

.rdata Size: 72KB - Virtual size: 70KB

.data Size: 32KB - Virtual size: 41KB

.rsrc Size: 4KB - Virtual size: 432B

.reloc Size: 20KB - Virtual size: 17KB

.text Size: 280KB - Virtual size: 280KB

.text
Size: 96KB - Virtual size: 94KB

.rdata
Size: 72KB - Virtual size: 70KB

.data
Size: 32KB - Virtual size: 41KB

.rsrc
Size: 4KB - Virtual size: 432B

.reloc
Size: 20KB - Virtual size: 17KB

.text
Size: 280KB - Virtual size: 280KB