5ea5397b61b7c5d647f7bfee79ad90e31aea0fd2fb4cc88a5f4aa0a699e5f542

General

Target

5ea5397b61b7c5d647f7bfee79ad90e31aea0fd2fb4cc88a5f4aa0a699e5f542
Size

174KB
MD5

82d97b79f5a390cdee52c822d044b72d
SHA1

b810b99facc19d86004b3c86e2abb2976896a2a9
SHA256

5ea5397b61b7c5d647f7bfee79ad90e31aea0fd2fb4cc88a5f4aa0a699e5f542
SHA512

fc2e62bb66427c7f23d3301ab9270be4b71f575023af0231c95cc2ab281f2700bff78c22241b1ff25d4fd9c30806e08b65b9bba0ba4cadbff7d5219e041fb8a6
SSDEEP

3072:349UnwVzW88888sxfvJZKSJ9cWkTfB1IuUXoxSzLaXBZc:3nCq88888sbKSJqlLIuUh2Xrc

Score

N/A

Malware Config

Signatures

Files

5ea5397b61b7c5d647f7bfee79ad90e31aea0fd2fb4cc88a5f4aa0a699e5f542
.dll windows x86

e065d8316060294666a323bac339eac5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
TerminateProcess
ExitProcess
LoadLibraryA
VirtualAlloc
HeapAlloc
HeapFree
WriteFile
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetOEMCP
GetACP
GetCPInfo
GetModuleFileNameA
GetStartupInfoA
RtlUnwind
GetCommandLineA
GetProcAddress
GetModuleHandleA
lstrcpyA
GetFileType
GetStdHandle
GetCurrentProcess
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount

gdi32

DeleteObject

ltkrn12n

ord134
ord101
ord100
ord211
ord209
ord214
ord141
ord125
ord163
ord225
ord192
ord280
ord281
ord189
ord190
ord191
ord188

Exports

Exports

DllMain
L_LoadRawFax
L_LoadTiledFax
L_SaveRawFax
L_SaveTiledFax
fltInfo
fltLoad
fltSave

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 102KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e065d8316060294666a323bac339eac5

Headers

File Characteristics

Imports

kernel32

gdi32

ltkrn12n

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 35KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 28KB - Virtual size: 28KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text Size: 102KB - Virtual size: 104KB

.text
Size: 36KB - Virtual size: 35KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 28KB - Virtual size: 28KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 102KB - Virtual size: 104KB