2a82c0438557bcdab01de10531c4cf5c18cbd336bebbbfe42561bf36c5e5525c

General

Target

2a82c0438557bcdab01de10531c4cf5c18cbd336bebbbfe42561bf36c5e5525c
Size

416KB
MD5

200650915038d67f2b3e52c639626d80
SHA1

7d9ab9d73b32215d81ad7319e9e350ce2bc0fae8
SHA256

2a82c0438557bcdab01de10531c4cf5c18cbd336bebbbfe42561bf36c5e5525c
SHA512

b93dd24c6794d4e5b4f4f0c11c62fbb5da6cc821b0b37fb2da75e3df3610bb4446677ca1591f4623d17f9191dd9958765ebadf7c30ca6f77a1712f7587953b3a
SSDEEP

12288:vS28LkcMKRkCt+tij6i/LKGHvTEFG/OBTz:YkcMKRkCt9j1/LKcvT96z

Score

N/A

Malware Config

Signatures

Files

2a82c0438557bcdab01de10531c4cf5c18cbd336bebbbfe42561bf36c5e5525c
.dll windows x86

7d7c99029561ead0bdda7bc33699d89f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
HeapAlloc
HeapFree
RaiseException
ExitProcess
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
SetUnhandledExceptionFilter
GetLastError
WriteFile
ReadFile
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
CloseHandle
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
FlushFileBuffers
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
RtlUnwind
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
UnhandledExceptionFilter
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
InitializeCriticalSection
InterlockedExchange
VirtualQuery
IsBadCodePtr
SetStdHandle
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
CreateFileA
HeapSize
GetLocaleInfoA
VirtualProtect
GetSystemInfo
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile

Exports

Exports

?freeData@@YAXAAPAK@Z
?readMNG@@YAXPBXAAK1AAPAK@Z

Sections

.text
Size: 284KB - Virtual size: 282KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7d7c99029561ead0bdda7bc33699d89f

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 284KB - Virtual size: 282KB

.rdata Size: 48KB - Virtual size: 46KB

.data Size: 8KB - Virtual size: 11KB

.reloc Size: 12KB - Virtual size: 9KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 284KB - Virtual size: 282KB

.rdata
Size: 48KB - Virtual size: 46KB

.data
Size: 8KB - Virtual size: 11KB

.reloc
Size: 12KB - Virtual size: 9KB

.rmnet
Size: 60KB - Virtual size: 60KB