f58051823caecdc5904c8c584d7dccc1c37865c60a67b80d7c4476d1ee4eb7f7

General

Target

f58051823caecdc5904c8c584d7dccc1c37865c60a67b80d7c4476d1ee4eb7f7
Size

232KB
MD5

a10049254adb16ac881675b9bf22bcfd
SHA1

ca31c2c69ea9aae27d9bf94f8d4ffcdc12227f55
SHA256

f58051823caecdc5904c8c584d7dccc1c37865c60a67b80d7c4476d1ee4eb7f7
SHA512

3eb3c3a075f1d7f0be2ce6df10d88c89e4e50c20c0648f6009437cfc5d2766e1c47ad5697da1f2d8fde0c2b31fad293da73a22795bc0ef55ddf5f8687e8566a2
SSDEEP

3072:zv9+lvkfopjRWqFkVT1FNkVDP9YrS2W3qOe/p1lDFmiNfPA6ShfdD2u7xzROcUL:clRjt+TjNiDlWS2cehrFNZStdDXVK

Score

N/A

Malware Config

Signatures

Files

f58051823caecdc5904c8c584d7dccc1c37865c60a67b80d7c4476d1ee4eb7f7
.dll windows x86

db50068397dc1d85b178019504c5981b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
SetFilePointer
WritePrivateProfileStringA
GetFileSize
GetModuleFileNameA
GetModuleHandleA
DeleteFileA
GetPrivateProfileStringA
HeapReAlloc
HeapAlloc
HeapFree
GetCommandLineA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetLastError
CloseHandle
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
InterlockedDecrement
InterlockedIncrement
SetStdHandle
FlushFileBuffers
CreateFileA
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
SetEndOfFile
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
RtlUnwind

shlwapi

PathFileExistsA

Exports

Exports

CheckRule
LoadDatabase

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 192KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

db50068397dc1d85b178019504c5981b

Headers

File Characteristics

Imports

kernel32

shlwapi

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 192KB - Virtual size: 209KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 192KB - Virtual size: 209KB

.reloc
Size: 4KB - Virtual size: 3KB