bee5e765dc51c4e3603102e830a2ad93047d2461cab9d2fb257473632173264c

Sharing

Copy URL Twitter E-mail

General

Target

bee5e765dc51c4e3603102e830a2ad93047d2461cab9d2fb257473632173264c
Size

170KB
MD5

925ae6b0893a595bb7a07123fac5b89f
SHA1

76f47c5cc4b7bf7bd422bf8ac59e2f6e3ff1277b
SHA256

bee5e765dc51c4e3603102e830a2ad93047d2461cab9d2fb257473632173264c
SHA512

0204d8bedde5568a0dde8e96edbe5c8adaf93d65ba3ec07f2970716eb6710d449960204609c95a56fddef199064033ff47acd0427c6eeb2297a94c6b7cd44116
SSDEEP

3072:tQ8ZScB3tpKfBsAlDoUrT5FCRXABdd1b46tYg+bRKUsxj8IYnIMhvJh8:tQ8DBdpKpssb/XCRQBdrbhaJI58ICIMu

Score

N/A

Malware Config

Signatures

Files

bee5e765dc51c4e3603102e830a2ad93047d2461cab9d2fb257473632173264c
.dll windows x86

97feeb521748d9973be3a3be7645b121

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

GetTraceEnableLevel
QueryServiceConfig2W
LsaLookupSids
AddAccessAllowedAce
ReportEventW
RegCreateKeyA
GetServiceKeyNameW
RegCreateKeyExW
GetTraceEnableFlags
SetSecurityDescriptorSacl
OpenSCManagerW
RegSetValueExW
ReportEventA
GetSidIdentifierAuthority
RegSetValueW
LsaEnumerateAccountRights
GetKernelObjectSecurity

netapi32

NetWkstaUserGetInfo
NetpIsRemote
NetFileGetInfo
NetGetAnyDCName
NetUseDel
NetGetDCName
NetUserDel
NetServiceEnum
NetShareDelSticky
NetDfsSetInfo
NetUserSetInfo
NetUserModalsGet
NetUserModalsSet

kernel32

DosPathToSessionPathA
CreateIoCompletionPort
SetConsoleHardwareState
DeleteTimerQueue
GetAtomNameW
WaitNamedPipeW
ClearCommError
VirtualAlloc
SetFilePointerEx
CloseHandle
GetComputerNameA
lstrcmpA
LoadLibraryW
GetSystemDefaultUILanguage
WriteConsoleW
GetEnvironmentStrings
UnmapViewOfFile
GetCommandLineW
GetPrivateProfileSectionNamesA
SetCriticalSectionSpinCount
GetModuleHandleW
WritePrivateProfileStringW
ReadConsoleInputA
GetVersion

gdi32

SetMapMode
AbortPath
EnumEnhMetaFile
GdiEntry13
EnumFontFamiliesW
CreateEnhMetaFileA
CreateDCW
GetWorldTransform
XLATEOBJ_iXlate

comctl32

ImageList_GetBkColor
PropertySheetW
ImageList_Add
ImageList_LoadImageW
ImageList_ReplaceIcon
ImageList_SetIconSize
DestroyPropertySheetPage
ImageList_GetImageCount
ImageList_Read
ImageList_GetImageInfo

Sections

.text
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 10KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97feeb521748d9973be3a3be7645b121

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

netapi32

kernel32

gdi32

comctl32

Sections

.text Size: 119KB - Virtual size: 119KB

.data Size: 21KB - Virtual size: 81KB

.rdata Size: 7KB - Virtual size: 60KB

.bss Size: 10KB - Virtual size: 36KB

.edata Size: 4KB - Virtual size: 32KB

.idata Size: 5KB - Virtual size: 30KB

.rsrc Size: 512B - Virtual size: 484B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 119KB - Virtual size: 119KB

.data
Size: 21KB - Virtual size: 81KB

.rdata
Size: 7KB - Virtual size: 60KB

.bss
Size: 10KB - Virtual size: 36KB

.edata
Size: 4KB - Virtual size: 32KB

.idata
Size: 5KB - Virtual size: 30KB

.rsrc
Size: 512B - Virtual size: 484B

.reloc
Size: 1KB - Virtual size: 1KB