1951460496d83b3306e9028cf80ea94539d172c6ed8198fdbac1254a69ebcf27

Sharing

Copy URL Twitter E-mail

General

Target

1951460496d83b3306e9028cf80ea94539d172c6ed8198fdbac1254a69ebcf27
Size

619KB
MD5

848d530e0fb0d428cb48d6f34dd6373b
SHA1

61c0436d4edf77791e98979022c39eff193cbe1d
SHA256

1951460496d83b3306e9028cf80ea94539d172c6ed8198fdbac1254a69ebcf27
SHA512

b16525fc45609c68c93cb2215ec8e05851b5ed356f523acf46555579db6c4d4b0a2dbd15d43d65bf7d76250e9094bb7ed8d2f4c90289240090cd681c3f846a6c
SSDEEP

12288:Zs9CIeoc+tBwbjlOrTKo0k/IYhMiFLpJt5MGXIDpMPneh4ui70mXBh:Zs9CIbc+knzrk/I78DLXIDLi7ZBh

Score

N/A

Malware Config

Signatures

Files

1951460496d83b3306e9028cf80ea94539d172c6ed8198fdbac1254a69ebcf27
.dll windows x86

7126a9fb4d43af1f02eb82baa9b20b48

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetCurrentThreadId
DecodePointer
GetCommandLineA
GetLastError
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileExA
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
GetModuleHandleW
SetLastError
InterlockedDecrement
GetProcAddress
HeapFree
Sleep
ExitProcess
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetFullPathNameA
CloseHandle
GetFileInformationByHandle
PeekNamedPipe
CreateFileA
GetCurrentDirectoryW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
EnterCriticalSection
LeaveCriticalSection
MultiByteToWideChar
ReadFile
RtlUnwind
IsProcessorFeaturePresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
HeapReAlloc
LoadLibraryW
WriteFile
GetModuleFileNameW
GetDriveTypeW
SetStdHandle
GetConsoleCP
GetConsoleMode
SetFilePointer
SetEndOfFile
GetProcessHeap
GetTimeZoneInformation
LCMapStringW
FlushFileBuffers
GetStringTypeW
HeapSize
WriteConsoleW
CreateFileW
CompareStringW
SetEnvironmentVariableA

Exports

Exports

R_FIPS_MODULE_resource

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 329KB - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 158KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7126a9fb4d43af1f02eb82baa9b20b48

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 119KB - Virtual size: 118KB

.rdata Size: 329KB - Virtual size: 329KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 1024B - Virtual size: 968B

.reloc Size: 5KB - Virtual size: 5KB

.text Size: 158KB - Virtual size: 160KB

.text
Size: 119KB - Virtual size: 118KB

.rdata
Size: 329KB - Virtual size: 329KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 1024B - Virtual size: 968B

.reloc
Size: 5KB - Virtual size: 5KB

.text
Size: 158KB - Virtual size: 160KB