b877e9a528accdd6c32c190d633d29f5dcdb276ded311813ef3a591655248a4d

Sharing

Copy URL Twitter E-mail

General

Target

b877e9a528accdd6c32c190d633d29f5dcdb276ded311813ef3a591655248a4d
Size

81KB
MD5

3061da359da9be3481699e3d0a780750
SHA1

1887a7c8b12579ef3ec80e64f3a468968d70740e
SHA256

b877e9a528accdd6c32c190d633d29f5dcdb276ded311813ef3a591655248a4d
SHA512

adccd70d8e7c0abb05bd9a15be0defde333b4fa3e14b627294f49bd293514d39827491343ebed0736a9a7fd13a4f0ee619329b84db8998cce4b30fea82ff2bd3
SSDEEP

1536:9+ezccNIQ2CBdlc/V4AIWBkruhXZHLYJR+s8tse1hlDwtlarSXm1o66fY:9+dbQrjWxZrHltTVQg2XmqU

Score

N/A

Malware Config

Signatures

Files

b877e9a528accdd6c32c190d633d29f5dcdb276ded311813ef3a591655248a4d
.dll windows x86

5a354fa19cc7120335e4e76da4612b3b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetErrorMode
FreeLibrary
GetProcAddress
LoadLibraryA

msvcr71

_except_handler3
__CppXcptFilter
_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
strncpy
isupper
tolower
fprintf
fopen
fseek
ftell
fclose
??_U@YAPAXI@Z
strtok
sprintf
??_V@YAXPAX@Z
time
localtime
fflush
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
_fstat
_fileno
_putenv
_stricmp
strchr

msvcp71

?_Xran@_String_base@std@@QBEXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

Exports

Exports

CreateFileObserver
SetDLLAccessPath

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5a354fa19cc7120335e4e76da4612b3b

Headers

File Characteristics

Imports

kernel32

msvcr71

msvcp71

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 168B

.rsrc Size: 1024B - Virtual size: 968B

.reloc Size: 2KB - Virtual size: 1KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 168B

.rsrc
Size: 1024B - Virtual size: 968B

.reloc
Size: 2KB - Virtual size: 1KB

.rmnet
Size: 56KB - Virtual size: 60KB