42b336dc606e75d0d9e23ecbda5c1698a62cb212ec794732f43bf879da5a61d7

Sharing

Copy URL Twitter E-mail

General

Target

42b336dc606e75d0d9e23ecbda5c1698a62cb212ec794732f43bf879da5a61d7
Size

384KB
MD5

0274d61bba574c2b94755e8795766bed
SHA1

fadaff370f1321c0cabc06bfecd6cda570a0b3f7
SHA256

42b336dc606e75d0d9e23ecbda5c1698a62cb212ec794732f43bf879da5a61d7
SHA512

08625824cb7ed675a72dc850ce91454bbda5abd7eabbcda9a93a10a6aed4989123d924ff5a7fe09ca56b824a5607485eeddab7e9bd8ae58f4591ed07bbd9be62
SSDEEP

6144:7/zEYSDz9DXswjm4UXXWuY/qqDL6rGHrIrClGzfliDPIdxU5i0XUJAFxhln+Ykd:7/YYSljjm4UHtqn6rIkAjKLApl+Ykd

Score

N/A

Malware Config

Signatures

Files

42b336dc606e75d0d9e23ecbda5c1698a62cb212ec794732f43bf879da5a61d7
.dll windows x86

804ecc13c632e801a2697c28506c5ce8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

nssutil3

PORT_GetError_Util
PORT_Alloc_Util
SECITEM_CompareItem_Util
SECITEM_ZfreeItem_Util
SECITEM_FreeItem_Util
SECITEM_CopyItem_Util
PORT_NewArena_Util
PORT_ArenaZAlloc_Util
PORT_FreeArena_Util
SECITEM_AllocItem_Util
PORT_ZFree_Util
PORT_ZAlloc_Util
PORT_Free_Util
PORT_SetError_Util

plc4

PL_strlen

nspr4

PR_GetLibraryFilePathname
PR_Open
PR_Seek
PR_Close
PR_Free
PR_Read
PR_CallOnce
PR_NewLock
PR_Lock
PR_Unlock
PR_DestroyLock

msvcr71

free
_stat
_onexit
__dllonexit
_except_handler3
__CppXcptFilter
_adjust_fdiv
_initterm
time
sprintf
fclose
fread
fopen
strncmp
rand
_strdup
malloc
abort
calloc
islower
isupper
isdigit
toupper

kernel32

GetVolumeInformationA
GetTickCount
DisableThreadLibraryCalls
GlobalMemoryStatus
GetLogicalDrives
GetComputerNameA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
GetDiskFreeSpaceA
LoadLibraryA
GetProcAddress
FreeLibrary
GetSystemDirectoryA
FindFirstFileA
FindNextFileA
FindClose

Exports

Exports

FREEBL_GetVector

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

804ecc13c632e801a2697c28506c5ce8

Headers

File Characteristics

Imports

nssutil3

plc4

nspr4

msvcr71

kernel32

Exports

Exports

Sections

.text Size: 148KB - Virtual size: 147KB

.rdata Size: 56KB - Virtual size: 54KB

.data Size: 4KB - Virtual size: 768B

.rsrc Size: 4KB - Virtual size: 816B

.reloc Size: 8KB - Virtual size: 4KB

.text Size: 160KB - Virtual size: 160KB

.text
Size: 148KB - Virtual size: 147KB

.rdata
Size: 56KB - Virtual size: 54KB

.data
Size: 4KB - Virtual size: 768B

.rsrc
Size: 4KB - Virtual size: 816B

.reloc
Size: 8KB - Virtual size: 4KB

.text
Size: 160KB - Virtual size: 160KB