acd4c69a8a328a9a415d4a9b9d29eef21e51a85c3df2593b8240b88bc4bc1aa3

General

Target

acd4c69a8a328a9a415d4a9b9d29eef21e51a85c3df2593b8240b88bc4bc1aa3
Size

74KB
MD5

930e3d10d1e4fd5447ed233b97dd0dfa
SHA1

c488794dbbc33f235ca4bf016cb8c1531d4e1840
SHA256

acd4c69a8a328a9a415d4a9b9d29eef21e51a85c3df2593b8240b88bc4bc1aa3
SHA512

b499d67124ca10cc459ad8efa25887c24a6960ef33cca70eb3728a264fb540c3aa990fa63c097651e449f0314ff28ab03c74f4acc9419eeb6f63e59dbe3ac102
SSDEEP

1536:8yI89Kd9ZIBLVtbZsxauBWG3unIGag+TCFN/Ei5SuV+RD974dbico8:Rt9KdIVbZf8Grag+TEW2+38Yd8

Score

N/A

Malware Config

Signatures

Files

acd4c69a8a328a9a415d4a9b9d29eef21e51a85c3df2593b8240b88bc4bc1aa3
.dll windows x86

5707953ce4dcd8c0033cd94d32881b94

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
WTSGetActiveConsoleSessionId
GetCurrentProcessId
ProcessIdToSessionId
QueryDosDeviceW
DefineDosDeviceW
GetLastError
CloseHandle
HeapAlloc
DisableThreadLibraryCalls
HeapFree

msvcrt

malloc
swprintf
wcsncpy
wcscpy
_wcsnicmp
wcsstr
wcscat
_adjust_fdiv
wcslen
_initterm
free
wcschr

ntdll

RtlAppendUnicodeToString
NtClose
NtFsControlFile
NtOpenFile
RtlInitUnicodeString
NtCreateFile

Exports

Exports

NPAddConnection
NPAddConnection3
NPCancelConnection
NPCloseEnum
NPEnumResource
NPGetCaps
NPGetConnection
NPGetResourceInformation
NPGetResourceParent
NPGetUniversalName
NPOpenEnum

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5707953ce4dcd8c0033cd94d32881b94

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

msvcrt

ntdll

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.data Size: 61KB - Virtual size: 60KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 348B

.text
Size: 10KB - Virtual size: 9KB

.data
Size: 61KB - Virtual size: 60KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 348B