173774379c0d5346e0190fcdf79d9b7e3d0d48c5b7144c5a7c9d705fa2b33de8

General

Target

173774379c0d5346e0190fcdf79d9b7e3d0d48c5b7144c5a7c9d705fa2b33de8
Size

260KB
MD5

a18b2ef764c34e590a0ff3a217794419
SHA1

4789f6baa4ea41b281caf90c35f6c73ae97d6fc4
SHA256

173774379c0d5346e0190fcdf79d9b7e3d0d48c5b7144c5a7c9d705fa2b33de8
SHA512

dff144a60f244990f2345ff38c55c019ee6c15b904b7c36a228ea43695a53c7d032555cff3fbca0df29bc156fbf8350a9900d1040b29b2bcb60d36fc5b8a316b
SSDEEP

6144:CFfLbt7jhOqOhvV64JQhhapDVcxJY8qeh:KfLbtRO9thDVcwrM

Score

N/A

Malware Config

Signatures

Files

173774379c0d5346e0190fcdf79d9b7e3d0d48c5b7144c5a7c9d705fa2b33de8
.dll windows x86

d0938a3ee62ea6a11e89ccdb0b0a5c08

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_BIND

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
LoadStringA
CharNextA
CharPrevA

advapi32

RegQueryInfoKeyA
RegEnumValueA
RegEnumKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA

kernel32

LocalFree
DeleteFileA
lstrcatA
FindClose
lstrcpyA
lstrcpynA
WritePrivateProfileStringA
WideCharToMultiByte
GetFileAttributesA
GetPrivateProfileIntA
FindFirstFileA
lstrcmpiA
lstrlenA
GetPrivateProfileStringA
LocalAlloc
SetFileAttributesA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

setupapi

SetupFindNextLine
SetupFindFirstLineA
SetupOpenInfFileA
SetupCloseLog
SetupLogErrorA
SetupCloseInfFile
SetupGetLineTextA
SetupOpenLog

Exports

Exports

DllMain
Initialize9x
InitializeNT
MigrateSystem9x
MigrateSystemNT
MigrateUser9x
MigrateUserNT
QueryVersion

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 368B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 656B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d0938a3ee62ea6a11e89ccdb0b0a5c08

Headers

DLL Characteristics

File Characteristics

Imports

user32

advapi32

kernel32

version

setupapi

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 368B

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: 4KB - Virtual size: 656B

.text Size: 232KB - Virtual size: 232KB

.text
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 368B

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 656B

.text
Size: 232KB - Virtual size: 232KB