6215791809c1e2d0d12c70ea286fe69c1842bbb62168322d326287ccb5065481

General

Target

6215791809c1e2d0d12c70ea286fe69c1842bbb62168322d326287ccb5065481
Size

235KB
MD5

3e138b8e054061863e8e2f20f15e6a80
SHA1

dc802d5b1b30aa8e993de68951cbaefaa87888b3
SHA256

6215791809c1e2d0d12c70ea286fe69c1842bbb62168322d326287ccb5065481
SHA512

509d7888a1d2fb768c80349bd14b7c02f8bfe28b52fd627a549f5cb47dfe50a54b7f516dd92ea72132b5679d0b295c132369b669247b9843495a56fcee923a09
SSDEEP

6144:c2LeMrOBKKwIOhmRs7ibcZH+CSVsCTBmxqYCtihl5XE58c8I4:cbrBKmOhmRs7lZH+ECT8xqdtsl5XEOnh

Score

N/A

Malware Config

Signatures

Files

6215791809c1e2d0d12c70ea286fe69c1842bbb62168322d326287ccb5065481
.dll windows x86

22db63d18b931fa92cb52bad0f20da71

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
MulDiv
lstrcmpiA
SetEnvironmentVariableA
CompareStringW
CompareStringA
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
LoadLibraryA
VirtualAlloc
SetStdHandle
HeapAlloc
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
MultiByteToWideChar
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
TerminateProcess
GetCurrentProcess
RtlUnwind
GetCommandLineA
GetVersion
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetLastError
SetFilePointer
WriteFile
HeapFree
CloseHandle
FlushFileBuffers
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
RaiseException
HeapDestroy
HeapCreate
VirtualFree
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
HeapReAlloc

ltkrn13n

ord285
ord192
ord190
ord313
ord189
ord283
ord312
ord282
ord116
ord134
ord100
ord129
ord137
ord141
ord125
ord188
ord191
ord167

Exports

Exports

DllMain
fltComment
fltInfo
fltLoad
fltSave

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

22db63d18b931fa92cb52bad0f20da71

Headers

File Characteristics

Imports

kernel32

ltkrn13n

Exports

Exports

Sections

.text Size: 132KB - Virtual size: 132KB

.rdata Size: 17KB - Virtual size: 17KB

.data Size: 20KB - Virtual size: 25KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 6KB - Virtual size: 5KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 132KB - Virtual size: 132KB

.rdata
Size: 17KB - Virtual size: 17KB

.data
Size: 20KB - Virtual size: 25KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 6KB - Virtual size: 5KB

.rmnet
Size: 56KB - Virtual size: 60KB