865e5fea4bc16c9a3c17624ade64815d4595f2dcef52b8182c961c6c10d68ab8

Sharing

Copy URL Twitter E-mail

General

Target

865e5fea4bc16c9a3c17624ade64815d4595f2dcef52b8182c961c6c10d68ab8
Size

192KB
MD5

9849b3aa0c070d57a810c504048cce48
SHA1

e166928a042bd07f6c1834a5847e7a846169eaa4
SHA256

865e5fea4bc16c9a3c17624ade64815d4595f2dcef52b8182c961c6c10d68ab8
SHA512

220ca1f937f5195a6df251b365a8f7f9f638671ef4d9ca545ce9ec4ed13ea0cbd4f5df8fcc0e12e4c212d3e67b51a67ee8b60afa680bc241bda386bea4e3f806
SSDEEP

3072:kMn+FRNsNlvU2cOklAYbN7yqJNTUzML/xo+27J61sWU:j+T2NDkKYbRgwONx

Score

N/A

Malware Config

Signatures

Files

865e5fea4bc16c9a3c17624ade64815d4595f2dcef52b8182c961c6c10d68ab8
.dll windows x86

dcdf2ab4dab93ef9954836649b16314c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mglobal

GetMoyeaException
GetMoyeaLogger

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

ws2_32

WSCDeinstallProvider

kernel32

WriteConsoleA
SetStdHandle
FlushFileBuffers
GetLocaleInfoW
GetConsoleMode
GetConsoleCP
IsValidCodePage
lstrlenA
WideCharToMultiByte
GetSystemDirectoryA
MultiByteToWideChar
lstrlenW
GetShortPathNameA
SetFileAttributesA
GetTempPathA
GetDriveTypeA
TerminateProcess
GetLastError
GetProcAddress
LoadLibraryA
GetVersionExA
CloseHandle
FindClose
GetFullPathNameW
GetConsoleOutputCP
FindFirstFileW
SetFilePointer
CreateProcessW
InterlockedIncrement
InterlockedDecrement
WaitForSingleObject
WriteFile
GetCommandLineA
InitializeCriticalSection
Sleep
LeaveCriticalSection
GetExitCodeProcess
GetModuleFileNameW
GetStartupInfoW
InterlockedExchange
EnterCriticalSection
GetModuleFileNameA
DeleteCriticalSection
IsValidLocale
EnumSystemLocalesA
WriteConsoleW
SetEnvironmentVariableA
CreateFileA
CompareStringA
CompareStringW
GetEnvironmentVariableW
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetOEMCP
GetStartupInfoA
GetFileType
GetACP
GetLocaleInfoA
GetThreadLocale
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
HeapAlloc
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeW
HeapReAlloc
GetSystemTimeAsFileTime
GetCurrentThreadId
GetProcessHeap
RaiseException
RtlUnwind
GetCPInfo
LCMapStringA
LCMapStringW
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
ExitProcess
HeapSize
GetCurrentDirectoryA
GetTimeZoneInformation
SetHandleCount

advapi32

RegOpenKeyExA
RegCloseKey
RegEnumKeyExA

ole32

CoTaskMemFree
CLSIDFromString
StringFromCLSID

shlwapi

SHGetValueA

Exports

Exports

CreateFixLSPMgr

Sections

.text
Size: 136KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dcdf2ab4dab93ef9954836649b16314c

Headers

File Characteristics

Imports

mglobal

version

ws2_32

kernel32

advapi32

ole32

shlwapi

Exports

Exports

Sections

.text Size: 136KB - Virtual size: 132KB

.rdata Size: 28KB - Virtual size: 24KB

.data Size: 8KB - Virtual size: 14KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 136KB - Virtual size: 132KB

.rdata
Size: 28KB - Virtual size: 24KB

.data
Size: 8KB - Virtual size: 14KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 12KB - Virtual size: 11KB