09d2f38e31e2b72e3f776a8ae70a0960ff502cacdaf523c3affa347b1086a69d

Sharing

Copy URL Twitter E-mail

General

Target

09d2f38e31e2b72e3f776a8ae70a0960ff502cacdaf523c3affa347b1086a69d
Size

132KB
MD5

0c6c307f3fcc969942fa6e0d4a7fd2e0
SHA1

68ecdafebd9854e56b51f12cd4e8ca24d0ca6892
SHA256

09d2f38e31e2b72e3f776a8ae70a0960ff502cacdaf523c3affa347b1086a69d
SHA512

463e2ca5ca78fe06d2a72bc3717c403de38465b66fa22a60ead68bcb25dfdbdd1d580f2a8cda39aedee897f13cbbce0229b40773ebae0a203977f2688674ec8c
SSDEEP

3072:fvuUK1ZsTHiXkxFQ9aToR/gxBeDVatY7m/unzJo1/zGuZj:XuV1Z0i0xFQ95/gx0VSR/iuZ

Score

N/A

Malware Config

Signatures

Files

09d2f38e31e2b72e3f776a8ae70a0960ff502cacdaf523c3affa347b1086a69d
.dll windows x86

dc6bc6228691574b9b9509bc391b645a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lclose
GlobalAlloc
_lread
_llseek
GlobalFree
GlobalLock
_lopen
_lcreat
CloseHandle
DeviceIoControl
CreateFileA
Sleep
WinExec
SetFileAttributesA
GetFileAttributesA
_lwrite
FileTimeToSystemTime
SetFileTime
SystemTimeToFileTime
GetLocalTime
GetVersionExA
GlobalReAlloc
GetFileInformationByHandle
GetWindowsDirectoryA
GetCommandLineA
GetVersion
DeleteFileA
HeapFree
HeapAlloc
GetCurrentDirectoryA
GetVolumeInformationA
GetFileTime
ExitProcess
GetCurrentProcess
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetLastError
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
MultiByteToWideChar
LCMapStringA
LCMapStringW
VirtualAlloc
HeapReAlloc
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
RtlUnwind
GetStringTypeA
GetStringTypeW
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
FlushFileBuffers
GlobalUnlock
TerminateProcess
WideCharToMultiByte
GetTimeZoneInformation
GetStdHandle

netapi32

Netbios

mpr

WNetGetConnectionA

user32

RegisterClassA
CreateWindowExA
UnregisterClassA
SendMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
FindWindowA
DestroyWindow
MessageBoxA
DefWindowProcA

advapi32

RegQueryValueExA
RegOpenKeyA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegDeleteValueA
RegSetValueExA
RegCreateKeyA

Exports

Exports

PRV00000
PRV00001
PRV00002
PRV00003
PRV00004
PRV00005
PRV00006
PRV00007
PRV00008
PRV00009
PRV00010
PRV00011
PRV00012
PRV00013
PRV00014
PRV00015
PRV00016
PRV00017
PRV00018
PRV00019
PRV00020
PRV00021
PRV00022
PRV00024

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dc6bc6228691574b9b9509bc391b645a

Headers

File Characteristics

Imports

kernel32

netapi32

mpr

user32

advapi32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 9KB

.reloc Size: 4KB - Virtual size: 2KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 9KB

.reloc
Size: 4KB - Virtual size: 2KB

.rmnet
Size: 60KB - Virtual size: 60KB