63016effa1bed69ecc646986ba6b059f83395f845a001ded712b772c46851cf9

General

Target

63016effa1bed69ecc646986ba6b059f83395f845a001ded712b772c46851cf9
Size

160KB
MD5

83cb811a4c2a0a79d67960863c76be15
SHA1

0668ec9592b200c996349dfd9afb7cb9becd6eb2
SHA256

63016effa1bed69ecc646986ba6b059f83395f845a001ded712b772c46851cf9
SHA512

ea3a4928771d5be459aca127dd64151f6f8d3d665f3167829dee3645e3f1b2bf73a6e3d723747ef4d5dc302d8b1315f3169e18e9ea52cf01d555e502cdf93745
SSDEEP

3072:VPRt9Wdr+9yGVWl48E7UqoQo8AujGiY8YnvVYZN7aje:pRtAr+bZ8AUD4AujvY8YvmN7aq

Score

N/A

Malware Config

Signatures

Files

63016effa1bed69ecc646986ba6b059f83395f845a001ded712b772c46851cf9
.dll windows x86

7cee449df4cd5205f8db0a2c4b081bce

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
GlobalFree
HeapAlloc
HeapFree
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
RtlUnwind
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
WideCharToMultiByte
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
GetCPInfo
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
ReadFile
SetStdHandle
SetFilePointer
FlushFileBuffers
CloseHandle

Exports

Exports

FXXZJC

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7cee449df4cd5205f8db0a2c4b081bce

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 64KB - Virtual size: 62KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 76KB - Virtual size: 81KB

.rsrc Size: 4KB - Virtual size: 1000B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 64KB - Virtual size: 62KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 76KB - Virtual size: 81KB

.rsrc
Size: 4KB - Virtual size: 1000B

.reloc
Size: 4KB - Virtual size: 3KB