54d15d5ce9694a6cc3cb3db650331ff05800a4b705e0c3d951e109aaa280bd0c

General

Target

54d15d5ce9694a6cc3cb3db650331ff05800a4b705e0c3d951e109aaa280bd0c
Size

86KB
MD5

13121f9846e99af94ae6f171885bc630
SHA1

d42413c25995608861c93a1ab848ce15f2f737d5
SHA256

54d15d5ce9694a6cc3cb3db650331ff05800a4b705e0c3d951e109aaa280bd0c
SHA512

29bb69e4496b0fc5450195e7acd27bd6f1ab29a144fb365f47026b41b2ca90e56f6b17520ce9f1ea9a54a81bc9f95e120fe7df68c45bcbebdd40d5d9116d4451
SSDEEP

1536:mJhQloJ+v8S9A/W2JfQO1omBMMCk/tswpipzaW/6N9Q3M9pK7PZnZBPXTT+7EFyY:0yukr2JfQsMMCk/tZiJ7oQ3MoPPXTT+/

Score

N/A

Malware Config

Signatures

Files

54d15d5ce9694a6cc3cb3db650331ff05800a4b705e0c3d951e109aaa280bd0c
.dll windows x86

a783faa6e9968dbacee966098f05b20a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
InterlockedExchange
GetModuleFileNameW
GetFileInformationByHandle
CloseHandle
GetModuleFileNameA
GetLastError
GetSystemDirectoryA
ReadFile
DebugBreak
LoadLibraryA
FreeLibrary
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetModuleHandleA
GetProcAddress
CreateFileA
GetCurrentProcess
InterlockedCompareExchange

msvcrt

_amsg_exit
_initterm
free
malloc
_XcptFilter
_snwprintf_s
wcsrchr
_wcslwr
strcat_s
strrchr
strchr
strtok_s
_strlwr
_purecall
??2@YAPAXI@Z
??3@YAXPAX@Z
strcpy_s
??_V@YAXPAX@Z
strncpy
??_U@YAPAXI@Z
_except_handler4_common
memset
memcpy

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

advapi32

RegQueryValueExA
RegOpenKeyExW
RegCloseKey

Exports

Exports

OpenAdapter
XopOpenAdapter9
XopQueryAdapters9

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a783faa6e9968dbacee966098f05b20a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

version

advapi32

Exports

Exports

Sections

.text Size: 25KB - Virtual size: 25KB

.data Size: 512B - Virtual size: 844B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 1012B

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 25KB - Virtual size: 25KB

.data
Size: 512B - Virtual size: 844B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 1012B

.rmnet
Size: 56KB - Virtual size: 60KB