e5a55125e57ce029dd9691bb0a8ba7e216fda6253be9127f0a68b415601bd078

General

Target

e5a55125e57ce029dd9691bb0a8ba7e216fda6253be9127f0a68b415601bd078
Size

137KB
MD5

0d60726fbf1c1cb93eb66cd77924be40
SHA1

50ae3bcc5cf8603d29839499469c620b47ffd621
SHA256

e5a55125e57ce029dd9691bb0a8ba7e216fda6253be9127f0a68b415601bd078
SHA512

ccd6cd76c9b1f58888ac0afc2bfbdc1cee662471edd0e6ba2036271b6b5050edeaacc8a3bbcdaa0c6450a61a6c5e57c7715b49ab8c39880b50b7d1be456afbb4
SSDEEP

3072:o2b/PJ9nTGe0Tf8brLxN0RTe8XUo5OhHxzZW/zqKqTT5HQwHrrcEA:o2b/GTm70RTe8b5OhH7WbqtTT5wKEZ

Score

N/A

Malware Config

Signatures

Files

e5a55125e57ce029dd9691bb0a8ba7e216fda6253be9127f0a68b415601bd078
.dll windows x86

63f2eccf50c6d7fd1fc1d66372a6237b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
MultiByteToWideChar
WideCharToMultiByte
QueryPerformanceCounter
ExitProcess

user32

SetCursor
GetCursor
LoadCursorA
DrawTextA

gdi32

CreateFontA
SetBkColor
SetBkMode
SetTextColor
SetMapMode
DeleteDC
CreateCompatibleDC
CreateDIBSection
SelectObject
DeleteObject

msvcr71

??_U@YAPAXI@Z
??3@YAXPAX@Z
sprintf
??2@YAPAXI@Z
strncmp
strncpy
_stricmp
__security_error_handler
_except_handler3
free
_initterm
malloc
_adjust_fdiv
__CppXcptFilter
__dllonexit
_onexit
??_V@YAXPAX@Z

Exports

Exports

CanUnload2
RMACreateInstance

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

63f2eccf50c6d7fd1fc1d66372a6237b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcr71

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 17KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 76B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 724B

.text Size: 108KB - Virtual size: 112KB

.text
Size: 18KB - Virtual size: 17KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 76B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 724B

.text
Size: 108KB - Virtual size: 112KB