359c0f910e46c4d3e7762d368d014ee772d76f7e1c77c5953d7f74863d2dc0c0

Sharing

Copy URL Twitter E-mail

General

Target

359c0f910e46c4d3e7762d368d014ee772d76f7e1c77c5953d7f74863d2dc0c0
Size

501KB
MD5

a133b05dd1efc7e940f46acff2168ac0
SHA1

d15c95c61915dc30f91ef0e16da022954a0417e4
SHA256

359c0f910e46c4d3e7762d368d014ee772d76f7e1c77c5953d7f74863d2dc0c0
SHA512

2c16cb449aa458ed10743fbaee6a6c2fd62165488ffbea48198756acfea3a4da2c83fe576bb9af0bb31ddf6c050cedacae35f7090912a10fbc1ed12525eba141
SSDEEP

6144:hAkCFSLHs3/VAODKVIzebNCX1MHhQ5FnmsLyGGf:akCgzs3/VIe65CqHhQ5Fm9f

Score

N/A

Malware Config

Signatures

Files

359c0f910e46c4d3e7762d368d014ee772d76f7e1c77c5953d7f74863d2dc0c0
.dll windows x86

b2c320eeb4fff3ef29cfd17eb7f009be

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCommandLineA
GetLastError
HeapFree
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
HeapAlloc
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RtlUnwind
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
RaiseException
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
VirtualAlloc
WriteFile
GetConsoleCP
GetConsoleMode
FlushFileBuffers
MultiByteToWideChar
CloseHandle
CompareStringA
CompareStringW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
SetFilePointer
LoadLibraryA
InitializeCriticalSectionAndSpinCount
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
GetModuleHandleA

Exports

Exports

Shuame

Sections

.text
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 357KB - Virtual size: 360KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b2c320eeb4fff3ef29cfd17eb7f009be

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 99KB - Virtual size: 98KB

.rdata Size: 29KB - Virtual size: 28KB

.data Size: 6KB - Virtual size: 12KB

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 8KB - Virtual size: 8KB

.text Size: 357KB - Virtual size: 360KB

.text
Size: 99KB - Virtual size: 98KB

.rdata
Size: 29KB - Virtual size: 28KB

.data
Size: 6KB - Virtual size: 12KB

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 8KB - Virtual size: 8KB

.text
Size: 357KB - Virtual size: 360KB