db2174664390e2d48667c795afe257f541fecf2ee29f4029c2a93b5f1cffcc4e

Sharing

Copy URL

Twitter E-mail

General

Target

db2174664390e2d48667c795afe257f541fecf2ee29f4029c2a93b5f1cffcc4e
Size

120KB
MD5

03fb30da96cf73da6894fb375b4e5470
SHA1

b9f3591c00505869c860734098adf3caab476e67
SHA256

db2174664390e2d48667c795afe257f541fecf2ee29f4029c2a93b5f1cffcc4e
SHA512

3b7137926b042e5562edf1f61337ddd756f9734214e264181c95fad5661af0a56341e12fc82ce8f29b70f3d20d6eeed338adf0cdd11d33d4606c44764c65e658
SSDEEP

3072:WHJ3uezIH4TwDnbU+VFFN3hgvUTtk8kybX:xU4HHFFlhgvUTC8l

Score

N/A

Malware Config

Signatures

Files

db2174664390e2d48667c795afe257f541fecf2ee29f4029c2a93b5f1cffcc4e
.dll windows x86

8891c36d74fe91d057004cc47a0ac3cd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

kernel32

CreateFileA
HeapSize
WriteConsoleW
Sleep
GetCurrentProcessId
LocalFree
GetModuleFileNameW
GetLocalTime
OpenProcess
GetLastError
GetCurrentProcess
CloseHandle
lstrlenW
GetVersionExW
FlushFileBuffers
TlsGetValue
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
RtlUnwind
InitializeCriticalSection
LoadLibraryA
GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleA
GetProcAddress
TlsAlloc
TlsSetValue
TlsFree
SetLastError
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
SetFilePointer
WriteFile
GetConsoleCP
GetConsoleMode
MultiByteToWideChar
RaiseException
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA

user32

GetWindowThreadProcessId
GetShellWindow
SetWindowPos
FindWindowExW

advapi32

ImpersonateLoggedOnUser
RevertToSelf
ConvertSidToStringSidW
OpenProcessToken
GetTokenInformation
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
DuplicateTokenEx

ole32

CoInitializeEx
CoUninitialize
CoInitializeSecurity
CoCreateInstance

Exports

Exports

GoogleChromeCompatibilityCheck
LaunchGoogleChrome
LaunchGoogleChromeWithDimensions
_GoogleChromeCompatibilityCheck@8
_LaunchGoogleChrome@0
_LaunchGoogleChromeWithDimensions@16

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8891c36d74fe91d057004cc47a0ac3cd

Headers

DLL Characteristics

File Characteristics

Imports

version

kernel32

user32

advapi32

ole32

Exports

Exports

Sections

.text Size: 40KB - Virtual size: 40KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 512B - Virtual size: 176B

.reloc Size: 6KB - Virtual size: 5KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 40KB - Virtual size: 40KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 512B - Virtual size: 176B

.reloc
Size: 6KB - Virtual size: 5KB

.rmnet
Size: 56KB - Virtual size: 60KB