3d1fd220e2da016f1000fbf7994e5aed3f09ed1894652a1f1f2d56c17741dac9

Sharing

Copy URL

Twitter E-mail

General

Target

3d1fd220e2da016f1000fbf7994e5aed3f09ed1894652a1f1f2d56c17741dac9
Size

226KB
MD5

0cf9c8e268c03ef887cb0b800d3c2926
SHA1

6bf9a8bc34bf362f388d1ed4ace86c46b9428353
SHA256

3d1fd220e2da016f1000fbf7994e5aed3f09ed1894652a1f1f2d56c17741dac9
SHA512

6d5d981a3c8ca83a27354453f940000c6a890834258f5da0539d11c25c90d83a71503cff815a77bfb8813314ca8e61ed07a3aa86b169b56b52f4ea70bbe7553c
SSDEEP

6144:B6ELlYE7/hAZUvPucYE05eLCjEMoDyuI5:gJ8hiU+HwMoD9W

Score

N/A

Malware Config

Signatures

Files

3d1fd220e2da016f1000fbf7994e5aed3f09ed1894652a1f1f2d56c17741dac9
.dll windows x86

a51f214beca7edae5a641407c711437f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

xpcom_core

PL_DHashVoidPtrKeyStub
?Assign@nsAString_internal@@QAEXABV1@@Z
?Assign@nsAString_internal@@QAEXPBG@Z
?SetLength@nsAString_internal@@QAEXI@Z
??1nsAString_internal@@QAE@XZ
PL_DHashTableOperate
PL_DHashClearEntryStub
?sCanonicalVTable@nsObsoleteAString@@2PBXB
?GetWeakReference@nsSupportsWeakReference@@UAGIPAPAVnsIWeakReference@@@Z
PL_DHashTableFinish
??0nsGetInterface@@QAE@PAVnsISupports@@PAI@Z
??1nsSupportsWeakReference@@IAE@XZ
NS_Free_P
??0nsSupportsWeakReference@@QAE@XZ
?NS_NewGenericModule2@@YAIPBUnsModuleInfo@@PAPAVnsIModule@@@Z
?Replace@nsCSubstring@@QAEXIIPBDI@Z
?Assign@nsCSubstring@@QAEXPBDI@Z
?EnsureMutable@nsSubstring@@IAEXXZ
?assign_from_gs_cid_with_error@nsCOMPtr_base@@QAEXABVnsGetServiceByCIDWithError@@ABUnsID@@@Z
?sCanonicalVTable@nsObsoleteACString@@2PBXB
??1nsACString_internal@@QAE@XZ
?assign_from_qi@nsCOMPtr_base@@QAEXVnsQueryInterface@@ABUnsID@@@Z
?assign_from_gs_contractid@nsCOMPtr_base@@QAEXVnsGetServiceByContractID@@ABUnsID@@@Z
?assign_from_qi_with_error@nsCOMPtr_base@@QAEXABVnsQueryInterfaceWithError@@ABUnsID@@@Z
?assign_from_gs_contractid_with_error@nsCOMPtr_base@@QAEXABVnsGetServiceByContractIDWithError@@ABUnsID@@@Z
?assign_from_helper@nsCOMPtr_base@@QAEXABVnsCOMPtr_helper@@ABUnsID@@@Z
PL_DHashMoveEntryStub
?Adopt@nsSubstring@@QAEXPAGI@Z
?SetLength@nsSubstring@@QAEXI@Z
PL_DHashFreeTable
PL_DHashAllocTable
PL_DHashFinalizeStub
PL_DHashTableInit
??1nsCOMPtr_base@@QAE@XZ
?sEmptyBuffer@?$nsCharTraits@G@@2PBGB
?assign_with_AddRef@nsCOMPtr_base@@QAEXPAVnsISupports@@@Z

nspr4

PR_AtomicDecrement
PR_AtomicIncrement

msvcr71

_onexit
_except_handler3
__CppXcptFilter
_adjust_fdiv
malloc
_initterm
free
??2@YAPAXI@Z
_purecall
??3@YAXPAX@Z
__dllonexit

kernel32

DisableThreadLibraryCalls

Exports

Exports

NSGetModule

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 207KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a51f214beca7edae5a641407c711437f

Headers

File Characteristics

Imports

xpcom_core

nspr4

msvcr71

kernel32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 80B

.rsrc Size: 1024B - Virtual size: 896B

.reloc Size: 1KB - Virtual size: 1KB

.text Size: 207KB - Virtual size: 208KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 80B

.rsrc
Size: 1024B - Virtual size: 896B

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 207KB - Virtual size: 208KB