51da274016724d3654dfb5cd5b202a73a8c31cb19aaf254568e56747337fca50

Sharing

Copy URL

Twitter E-mail

General

Target

51da274016724d3654dfb5cd5b202a73a8c31cb19aaf254568e56747337fca50
Size

220KB
MD5

120a38ec5fd75385e14bd68cc28b3ed0
SHA1

9e2df88945805a10d4e317a4670021d53c02be0a
SHA256

51da274016724d3654dfb5cd5b202a73a8c31cb19aaf254568e56747337fca50
SHA512

11167bdb425c0146cf296ea9917a225f860bbb3c9e48f4f807ae0fdc827f283f9b7fe8565a739765b04ce096bf0136d6b789e19b6c269c29d4f792aa8972fb73
SSDEEP

3072:bx80xX2aL6pDXcyISI+TzOFeITQryMyHcMAfA2y24OXEDXc4PMbuAcKwsWf:bxpX16bIHFtgKAfA3jO0DXcDbu5bf

Score

N/A

Malware Config

Signatures

Files

51da274016724d3654dfb5cd5b202a73a8c31cb19aaf254568e56747337fca50
.dll windows x86

aefda434ae4b93c230d456d656e7b4a9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedCompareExchange
lstrcpyA
GetFileType
FlushFileBuffers
GetDiskFreeSpaceA
GetTempPathA
UnhandledExceptionFilter
CreateFileMappingA
GlobalLock
FreeEnvironmentStringsW
SizeofResource
CreateDirectoryW
HeapFree
GetProcAddress
LoadResource
CreateFileW
SetStdHandle
ExitProcess
GetCurrentProcess
GetSystemDirectoryW
GetPrivateProfileStringW
GlobalUnlock
GetACP
GetModuleFileNameW
TerminateProcess
LoadLibraryA
GetLastError
WaitForSingleObject
lstrcmpiA
MultiByteToWideChar
GlobalAlloc
LocalAlloc
InterlockedExchange
FreeLibrary
LocalFree
RaiseException

shell32

SHBrowseForFolderW
SHGetMalloc

powrprof

WriteGlobalPwrPolicy
GetActivePwrScheme
SetActivePwrScheme
ReadGlobalPwrPolicy

Exports

Exports

_kHchIycwu

Sections

.text
Size: 196KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

guano
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

apes
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ppp
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 816B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aefda434ae4b93c230d456d656e7b4a9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shell32

powrprof

Exports

Exports

Sections

.text Size: 196KB - Virtual size: 194KB

.data Size: 4KB - Virtual size: 10KB

guano Size: 4KB - Virtual size: 4B

apes Size: 4KB - Virtual size: 12B

ppp Size: 4KB - Virtual size: 16B

.rsrc Size: 4KB - Virtual size: 1016B

.reloc Size: 816B - Virtual size: 4KB

.text
Size: 196KB - Virtual size: 194KB

.data
Size: 4KB - Virtual size: 10KB

guano
Size: 4KB - Virtual size: 4B

apes
Size: 4KB - Virtual size: 12B

ppp
Size: 4KB - Virtual size: 16B

.rsrc
Size: 4KB - Virtual size: 1016B

.reloc
Size: 816B - Virtual size: 4KB