07c52f812a6107f965811023785cb8cd28051faeedeb3cdd670e33dd2e43d838

Sharing

Copy URL Twitter E-mail

General

Target

07c52f812a6107f965811023785cb8cd28051faeedeb3cdd670e33dd2e43d838
Size

213KB
MD5

82177f138a255f20ffe1d90d4d9dd9a5
SHA1

d97efa741542790f7ab31b219cc67f9f9550df37
SHA256

07c52f812a6107f965811023785cb8cd28051faeedeb3cdd670e33dd2e43d838
SHA512

87533f75b1e11851013ca19e0567a7917f57aecde6f1b71d44b76629f3706e5500c45c9b982bb50c76fdd49e825b920071cccc27dca83aa2906a4a5d0b63c474
SSDEEP

3072:U3F6CJbjF/7aVUY8EHH6pUT+XgRVSWdWvw9NA2MnglG3GD:iJbjFDaVp8EHHugRGvw9JMng4i

Score

N/A

Malware Config

Signatures

Files

07c52f812a6107f965811023785cb8cd28051faeedeb3cdd670e33dd2e43d838
.dll windows x86

42a21905a87dbcbbd3044f597768960c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

xpcom

NS_CStringContainerInit2
NS_Alloc
NS_GetServiceManager
NS_UTF16ToCString
NS_CStringToUTF16
NS_CStringContainerFinish
NS_CStringContainerInit
NS_StringContainerFinish
NS_StringContainerInit2
NS_StringContainerInit
NS_StringSetDataRange
NS_StringSetData
NS_StringCopy
NS_StringGetData

kernel32

HeapReAlloc
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetFilePointer
LoadLibraryA
DisableThreadLibraryCalls
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetFileAttributesW
GetVersion
RaiseException
InterlockedDecrement
lstrlenW
GetModuleFileNameW
LoadLibraryW
GetLastError
SetLastError
OutputDebugStringA
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LCMapStringA
SetStdHandle
CloseHandle
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
RtlUnwind
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
GetCurrentThreadId
GetCommandLineA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
HeapSize
WriteFile
GetStdHandle
GetModuleFileNameA
Sleep
ExitProcess
SetHandleCount

user32

GetCursor
SetCursor
GetForegroundWindow
LoadStringW
CharLowerW
LoadCursorW

shlwapi

UrlCombineW
PathCombineW
PathRemoveFileSpecW

Exports

Exports

NSGetModule
NSModule

Sections

.text
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 98KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

42a21905a87dbcbbd3044f597768960c

Headers

File Characteristics

Imports

xpcom

kernel32

user32

shlwapi

Exports

Exports

Sections

.text Size: 74KB - Virtual size: 74KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 1016B

.reloc Size: 9KB - Virtual size: 8KB

.text Size: 98KB - Virtual size: 100KB

.text
Size: 74KB - Virtual size: 74KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 1016B

.reloc
Size: 9KB - Virtual size: 8KB

.text
Size: 98KB - Virtual size: 100KB