9eed06f5893bf12ece9815d89211e98d846618123593af62114a11b34ea6e678

Sharing

Copy URL Twitter E-mail

General

Target

9eed06f5893bf12ece9815d89211e98d846618123593af62114a11b34ea6e678
Size

324KB
MD5

2817c71a480200082725e194e2b64f70
SHA1

e8d3eb5621573b731d0efcfb1244e7fe4391a5b7
SHA256

9eed06f5893bf12ece9815d89211e98d846618123593af62114a11b34ea6e678
SHA512

daeb23cbd0ab31563af1cf47bd58521871aeadc18afbe48ffaf9a86a38e53e6c39345e3ab6279bd27ef7537fcdd1e05ae27f4d47f0a3c0ba1a0e5ca5f0ad4fa0
SSDEEP

6144:I1asu9hEZCi3R60OpuFJ/uQWve0JO7iimoYxuPgGNFg2R1vYXd:PsuOBieJ/mve087iimoYxPSx

Score

N/A

Malware Config

Signatures

Files

9eed06f5893bf12ece9815d89211e98d846618123593af62114a11b34ea6e678
.dll windows x86

b45e7072b04599734a15c25a4e19ce17

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
Sleep
CopyFileA
MoveFileA
SetFileAttributesA
GetFileAttributesA
lstrcmpA
IsBadWritePtr
EnterCriticalSection
LeaveCriticalSection
CreateMutexA
GetTickCount
GetVersion
UnmapViewOfFile
InterlockedIncrement
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
SetEndOfFile
SetConsoleCtrlHandler
lstrlenW
LocalFree
DeleteFileA
lstrlenA
InterlockedDecrement
CreateFileA
CloseHandle
MultiByteToWideChar
WaitForSingleObject
ReleaseMutex
LoadLibraryA
FreeLibrary
GetModuleFileNameA
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetProcessHeap
HeapAlloc
GetLastError
GetModuleHandleA
GetProcAddress
HeapFree
lstrcpyA
SetEnvironmentVariableA
CompareStringW
GetTimeZoneInformation
CompareStringA
GetCurrentProcessId
QueryPerformanceCounter
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
RtlUnwind
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCommandLineA
TlsAlloc
SetLastError
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
FatalAppExitA
HeapReAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
HeapSize
WriteFile
FlushFileBuffers
SetUnhandledExceptionFilter
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetOEMCP
GetCPInfo
LCMapStringA
WideCharToMultiByte
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetStringTypeA
GetLocaleInfoW

user32

MessageBoxA
wsprintfA
UnregisterClassA

advapi32

RegEnumKeyExA
RegOpenKeyExA
RegCreateKeyA
RegSetValueExA
RegQueryValueExA
RegCloseKey
GetFileSecurityA
SetFileSecurityA
RegOpenKeyA
AllocateAndInitializeSid
RegQueryInfoKeyA
RegGetKeySecurity
InitializeSecurityDescriptor
GetSecurityDescriptorDacl
GetAclInformation
GetLengthSid
InitializeAcl
AddAce
GetAce
EqualSid
AddAccessAllowedAce
SetSecurityDescriptorDacl
GetSecurityDescriptorControl
RegSetKeySecurity
FreeSid

ole32

OleRun
CoCreateInstance
CoInitialize

oleaut32

VariantClear
VariantChangeType
VariantCopy
VariantInit
SysFreeString
SysStringByteLen
SysAllocStringByteLen
SysAllocString
CreateErrorInfo
GetErrorInfo
SetErrorInfo

Exports

Exports

NewConfigObject
ReleaseConfigObject

Sections

.text
Size: 208KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b45e7072b04599734a15c25a4e19ce17

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 208KB - Virtual size: 205KB

.rdata Size: 28KB - Virtual size: 24KB

.data Size: 8KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 12KB - Virtual size: 10KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 208KB - Virtual size: 205KB

.rdata
Size: 28KB - Virtual size: 24KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 12KB - Virtual size: 10KB

.rmnet
Size: 60KB - Virtual size: 60KB