9332d6ca061eb8d6caa379ef4bb1b337b05c017673ebdd4f62e5d36bf7b41aa5

Sharing

Copy URL Twitter E-mail

General

Target

9332d6ca061eb8d6caa379ef4bb1b337b05c017673ebdd4f62e5d36bf7b41aa5
Size

118KB
MD5

03136e35c244ff976a1ab74726fd5c70
SHA1

94296139bf3fb1151185961df540d36973b7fadb
SHA256

9332d6ca061eb8d6caa379ef4bb1b337b05c017673ebdd4f62e5d36bf7b41aa5
SHA512

c8ea74ba36411d1bd8da0c3dea172755d378891be5cb95e326c2e5ccd0c469921cbacdb483fd59a28e00f60f3ad89ad361cecf77634928b94eec83ed224032f0
SSDEEP

1536:L+LZt0OuY0jpHjijM11YU60dSRhO7jAxwbnyfL+qDUzHtGD+PVP+:LU0bWjM11YU60S6XAjfL+qDUxPVP

Score

N/A

Malware Config

Signatures

Files

9332d6ca061eb8d6caa379ef4bb1b337b05c017673ebdd4f62e5d36bf7b41aa5
.dll windows x86

42da34815ec515633def8b5b8e107da6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
VirtualQuery
CreateToolhelp32Snapshot
GetCurrentProcessId
Module32FirstW
Module32NextW
lstrcmpiA
VirtualProtect
WriteProcessMemory
GetCurrentProcess
GetLastError
LoadLibraryA
LoadLibraryW
LoadLibraryExA
LoadLibraryExW
GetModuleFileNameW
CloseHandle
GetVersionExW
WaitForSingleObject
Sleep
CreateEventW
CreateThread
SetEvent
TerminateThread
CreateFileW
WriteConsoleW
SetStdHandle
IsProcessorFeaturePresent
GetCurrentThreadId
DecodePointer
GetCommandLineA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
SetLastError
HeapAlloc
RaiseException
HeapFree
ExitProcess
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
LCMapStringW
MultiByteToWideChar
GetStringTypeW
LeaveCriticalSection
EnterCriticalSection
SetFilePointer
WriteFile
GetConsoleCP
GetConsoleMode
HeapSize
RtlUnwind
HeapReAlloc
FlushFileBuffers

ole32

CoCreateInstance
CoInitialize
CoUninitialize

imagehlp

ImageDirectoryEntryToData

Exports

Exports

SetUzPluginMute

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

42da34815ec515633def8b5b8e107da6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

imagehlp

Exports

Exports

Sections

.text Size: 35KB - Virtual size: 35KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 5KB - Virtual size: 5KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 35KB - Virtual size: 35KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 5KB - Virtual size: 5KB

.rmnet
Size: 56KB - Virtual size: 60KB