ae8f72d21b35de1dc2986650a723b20ee571ec56afe9a42e558a6cd0bfd8d465

Sharing

Copy URL Twitter E-mail

General

Target

ae8f72d21b35de1dc2986650a723b20ee571ec56afe9a42e558a6cd0bfd8d465
Size

448KB
MD5

0c6695d55099f8674b818d25e16a4a90
SHA1

54ab3a7da4386db457066bd5407153bf958307e8
SHA256

ae8f72d21b35de1dc2986650a723b20ee571ec56afe9a42e558a6cd0bfd8d465
SHA512

f2999899d033585b9723b9a8091c043de17c31b8e950be0b3eaa331fd8194f934e0303ce1603705f74d0c7b1332057e20e8dc4d32a7500b2202f663182a74f97
SSDEEP

12288:EZYT9airkwCepJvPxsVBwfLk0y6o2YZJkZvMT8XE9u:XkQo1Gc8XE4

Score

N/A

Malware Config

Signatures

Files

ae8f72d21b35de1dc2986650a723b20ee571ec56afe9a42e558a6cd0bfd8d465
.dll windows x86

cec52c1d53c87967152b6b9f6ea3dffc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dbg

Error

kernel32

TlsAlloc
CloseHandle
GetProcAddress
LoadLibraryA
GetModuleHandleA
HeapFree
RtlUnwind
InterlockedDecrement
InterlockedIncrement
GetTimeZoneInformation
GetSystemTime
GetLocalTime
IsBadReadPtr
HeapAlloc
HeapReAlloc
GetCommandLineA
GetVersion
Sleep
ExitProcess
TerminateProcess
GetCurrentProcess
GetLastError
CreateDirectoryA
WideCharToMultiByte
HeapSize
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
TlsSetValue
TlsFree
SetLastError
TlsGetValue
RaiseException
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
GetCPInfo
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
MultiByteToWideChar
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
IsBadCodePtr
SetFilePointer
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
SetStdHandle
GetLocaleInfoW
ReadFile
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA

Exports

Exports

CreateInterface

Sections

.text
Size: 272KB - Virtual size: 271KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cec52c1d53c87967152b6b9f6ea3dffc

Headers

File Characteristics

Imports

dbg

kernel32

Exports

Exports

Sections

.text Size: 272KB - Virtual size: 271KB

.rdata Size: 48KB - Virtual size: 44KB

.data Size: 32KB - Virtual size: 51KB

.reloc Size: 32KB - Virtual size: 29KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 272KB - Virtual size: 271KB

.rdata
Size: 48KB - Virtual size: 44KB

.data
Size: 32KB - Virtual size: 51KB

.reloc
Size: 32KB - Virtual size: 29KB

.rmnet
Size: 60KB - Virtual size: 60KB