0e5db703bd9b6455f0ae45ab0ea65bdec749dde4c35670ad282b89397c144e0c

General

Target

0e5db703bd9b6455f0ae45ab0ea65bdec749dde4c35670ad282b89397c144e0c
Size

172KB
MD5

0ae361fe96436c26c35f05876c99130b
SHA1

11fdf8e97c79255ab79f94e39503a187b3389e99
SHA256

0e5db703bd9b6455f0ae45ab0ea65bdec749dde4c35670ad282b89397c144e0c
SHA512

3353622606b641923ada2acab2abe1b1ddb17ec66ad2020e3866ccb38e5062b437bf2006cba13d4c098f5b7d84ffa8ed613a6c36c2d1e571e920bd264488115c
SSDEEP

3072:baEN5Nmvh2URAF/9soPx0sA+xYepCbmVVb0F0p3C9f95yHl:5NjiBARCs8OdVK0pyy

Score

N/A

Malware Config

Signatures

Files

0e5db703bd9b6455f0ae45ab0ea65bdec749dde4c35670ad282b89397c144e0c
.dll windows x86

e75d9639dc9b013309ddabaf5f550cb0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReplaceFileA
GetCommMask
SetStdHandle
HeapFree
EnumSystemLocalesA
MultiByteToWideChar
GetStringTypeA
VirtualAlloc
GetTempPathA
CreateDirectoryExW
GetDriveTypeA
ReadConsoleOutputAttribute
RaiseException
GetWindowsDirectoryA
SetConsoleCursorInfo
_llseek
GetSystemDefaultLCID
GetSystemTimes
OpenThread
GetVersion
GetSystemWindowsDirectoryA
GetShortPathNameA
FileTimeToLocalFileTime
WriteConsoleOutputCharacterA
GetCurrentThread
LoadResource
GetOverlappedResult
WriteFileEx
GetModuleFileNameA
GetDateFormatA
WaitForMultipleObjects
GetBinaryTypeA
WriteConsoleA
GetCalendarInfoA
EnumResourceNamesA
GetVolumePathNameA
VirtualLock
IsValidCodePage
GetCommState
OutputDebugStringA
SetVolumeMountPointA
GetThreadPriorityBoost
CreateFileMappingA
WriteProcessMemory
GetVolumeInformationA
SetVDMCurrentDirectories
FindFirstFileExA
SleepEx
GetSystemRegistryQuota
MoveFileExA
GetDllDirectoryA
FindNextFileA
GetPrivateProfileSectionNamesW
IsBadCodePtr
LocalHandle
SetFilePointer
CloseConsoleHandle
GetLocaleInfoA
FindAtomA
SetFilePointer
lstrcpynA
IsSystemResumeAutomatic
GetCurrencyFormatA
EndUpdateResourceA
GetProfileSectionA
ReleaseMutex
HeapDestroy
_lcreat
GetExitCodeProcess
Toolhelp32ReadProcessMemory

wininet

FtpSetCurrentDirectoryW
FtpSetCurrentDirectoryW

winmm

timeGetTime
timeGetSystemTime

Sections

.text
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itext
Size: 160KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e75d9639dc9b013309ddabaf5f550cb0

Headers

File Characteristics

Imports

kernel32

wininet

winmm

Sections

.text Size: - Virtual size: 2KB

.itext Size: 160KB - Virtual size: 167KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: - Virtual size: 2KB

.itext
Size: 160KB - Virtual size: 167KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB