d9ff08edbd7aa95160cf1829fce96724051ccd30afeeb5519a4923eb01d994fe

General

Target

d9ff08edbd7aa95160cf1829fce96724051ccd30afeeb5519a4923eb01d994fe
Size

128KB
MD5

40003ceb91603030742b241904005550
SHA1

3bedb30dbfcdfd4537e6b266655018646c72c973
SHA256

d9ff08edbd7aa95160cf1829fce96724051ccd30afeeb5519a4923eb01d994fe
SHA512

a82748595c242dfce7a57b720159e0d152c1230b67c83b9a2e89071b9f4e6a10ed4083bdb8a1552299b46d9358edc9ac342d202257eb67056a76af5415fcbfd9
SSDEEP

1536:wwMQeK7TmEhu5UTpfGdluLN7zoSQAKxFVJxFoSB0mP2V1LXNJ:wwMNPbuL9zoRJKSB0mPS1LX

Score

N/A

Malware Config

Signatures

Files

d9ff08edbd7aa95160cf1829fce96724051ccd30afeeb5519a4923eb01d994fe
.dll windows x86

065ece598937eb716ee02842c455618c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
FileTimeToDosDateTime
FileTimeToLocalFileTime
GetFileTime
CreateFileA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
HeapFree
HeapAlloc
RtlUnwind
EnterCriticalSection
LeaveCriticalSection
GetCommandLineA
GetVersion
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
DeleteCriticalSection
ExitProcess
VirtualAlloc
HeapReAlloc
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
WideCharToMultiByte
TerminateProcess
CloseHandle
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
SetStdHandle
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
InterlockedDecrement
InterlockedIncrement
FlushFileBuffers
SetFilePointer
GetProcAddress
LoadLibraryA
LCMapStringA
LCMapStringW
DeleteFileA
ReadFile
SetEndOfFile

Exports

Exports

doZip
unZip

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

065ece598937eb716ee02842c455618c

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 42KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 329KB

.reloc Size: 8KB - Virtual size: 6KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 44KB - Virtual size: 42KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 329KB

.reloc
Size: 8KB - Virtual size: 6KB

.rmnet
Size: 60KB - Virtual size: 60KB