861c4ded0dd8651dade6f02aa4c7e1427e8d33346f38e53ddc1f190e46f0ffd3

General

Target

861c4ded0dd8651dade6f02aa4c7e1427e8d33346f38e53ddc1f190e46f0ffd3
Size

87KB
MD5

0e61f45e457c6278d3f77b13f4106adc
SHA1

786aaf270af4e8eb39090fd857a7303314ee31a0
SHA256

861c4ded0dd8651dade6f02aa4c7e1427e8d33346f38e53ddc1f190e46f0ffd3
SHA512

05277d79c290ed748c93ffd337aa3872e2830dd81dfcf272d1eb47891e346c306a9ee8a79e38d7e08b3e05775486c0a90ecb3cc1f31004f9123f9c168cc607ce
SSDEEP

1536:VV2IBqLHm14QTDVryPHYTi1t3vYB895wlSFsjF56vy:Vt6QVyPHX1JK8zxVv

Score

N/A

Malware Config

Signatures

Files

861c4ded0dd8651dade6f02aa4c7e1427e8d33346f38e53ddc1f190e46f0ffd3
.dll windows x86

31f7130b5148492dc0f7bb0afbe848cf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GetTickCount
VirtualAlloc
VirtualFree
GlobalUnlock
GlobalLock
Sleep
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
InterlockedCompareExchange
InterlockedExchange
CompareStringW
InterlockedDecrement
SetLastError
lstrlenW
GetLastError
GetCommandLineA
HeapAlloc
GetProcessHeap
HeapFree
lstrcpyA
lstrcmpiA
LocalFree
lstrlenA
GetSystemInfo
WaitForSingleObject
MultiByteToWideChar
CloseHandle
InterlockedExchangeAdd
SystemTimeToFileTime
LocalAlloc
EnterCriticalSection
InterlockedIncrement
ReleaseSemaphore
GlobalAlloc
LeaveCriticalSection
VirtualProtect

advapi32

RevertToSelf
ImpersonateLoggedOnUser

ole32

CoUninitialize
CoCreateInstance
CoTaskMemFree

msvcr71

_onexit
__CppXcptFilter
_adjust_fdiv
malloc
_except_handler3
_amsg_exit
_initterm
free
_XcptFilter
wcslen
wcsncpy
__dllonexit
wcsncmp
_wcsicmp
_CxxThrowException
swprintf
isspace
_itoa
strstr

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

31f7130b5148492dc0f7bb0afbe848cf

Headers

File Characteristics

Imports

kernel32

advapi32

ole32

msvcr71

Sections

.text Size: 42KB - Virtual size: 42KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 4KB - Virtual size: 35KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 42KB - Virtual size: 42KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 4KB - Virtual size: 35KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 2KB