e6d3800f9e7c1ce0c794f284cbbabf0da9cb9f4cc990b780832e322ff06e032d

Sharing

Copy URL Twitter E-mail

General

Target

e6d3800f9e7c1ce0c794f284cbbabf0da9cb9f4cc990b780832e322ff06e032d
Size

144KB
MD5

81da27c0d3a352605b3459743332e977
SHA1

93770d5a9cc4911ae77527a1de65cc33eebd6dfe
SHA256

e6d3800f9e7c1ce0c794f284cbbabf0da9cb9f4cc990b780832e322ff06e032d
SHA512

b0c20858ab6c9d62590ec6e3d2d1ceaeb0c842c9b78d7c66e0e21563d0f51fc957284f8ac9d8ac9866fdb3a410e2ccdc62bed92c168f4a06b602971e5f5aae67
SSDEEP

3072:6JSKLSXRJttanH5zyUGrr11iNTyPd1g7BxFTgDojTG+:kyXRJtQ5zyUciYleFTIgT

Score

N/A

Malware Config

Signatures

Files

e6d3800f9e7c1ce0c794f284cbbabf0da9cb9f4cc990b780832e322ff06e032d
.dll windows x86

ceb35e821edee47436c90eee08e9bb7a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryInformationJobObject
CallNamedPipeA
IsSystemResumeAutomatic
GetCommandLineA
OpenJobObjectA
ReadConsoleOutputAttribute
HeapDestroy
BuildCommDCBAndTimeoutsW
OpenMutexA
GetTimeFormatA
EnumResourceTypesA
EscapeCommFunction
GetVersionExA
FindClose
GetFileAttributesExA
GlobalLock
FindFirstFileExA
IsBadReadPtr
ReadConsoleOutputCharacterA
PeekConsoleInputA
AddAtomA
WaitForSingleObjectEx
SetThreadUILanguage
FindResourceExW
GetConsoleAliasesLengthA
FindFirstChangeNotificationA
SetMailslotInfo
WriteConsoleOutputCharacterA
WriteConsoleInputA
SetHandleContext
GetDefaultCommConfigA
SetHandleInformation
LZStart
BuildCommDCBA
GetProcessPriorityBoost
GetCurrentThread
EndUpdateResourceA
FlushConsoleInputBuffer
GetDiskFreeSpaceExA
_lwrite
SetFilePointer
WriteConsoleA
WriteConsoleOutputA
SetConsoleFont
VirtualLock
SetConsoleCursorPosition
OpenSemaphoreA
GetSystemTimeAdjustment
GetProfileSectionA
IsBadHugeWritePtr
GetConsoleTitleA
GetVolumeInformationA
VirtualAlloc
GetProfileStringA
CreateSocketHandle
GetProcessId
LoadLibraryExA
SetSystemPowerState
OpenEventA
GetProcessVersion
GetFileAttributesA
GetSystemWindowsDirectoryA
GetExitCodeThread
GetCommState
lstrcat
CreateDirectoryExW
WriteProfileSectionA
GetSystemInfo
QueueUserWorkItem
DeleteTimerQueueEx
GetSystemTimes
GetConsoleCommandHistoryLengthA

wininet

FtpSetCurrentDirectoryW
FtpSetCurrentDirectoryW

winmm

timeGetSystemTime
timeGetTime

Exports

Exports

GetAfktqhm
CloseKbvqfmicli
Gsirywu
Tqvwupcn
SetOjjvgcqxv
CreateAtxvnwhtpsl
AddBvethobewbo
Dswntbhmxar

Sections

.idata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 132KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ceb35e821edee47436c90eee08e9bb7a

Headers

File Characteristics

Imports

kernel32

wininet

winmm

Exports

Exports

Sections

.idata Size: - Virtual size: 1KB

.text Size: 132KB - Virtual size: 181KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.idata
Size: - Virtual size: 1KB

.text
Size: 132KB - Virtual size: 181KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB