239e5b5a70d0e9a7f64d480c80e0e0b6bbd783d42b979983981b8676189b4ef3

Sharing

Copy URL Twitter E-mail

General

Target

239e5b5a70d0e9a7f64d480c80e0e0b6bbd783d42b979983981b8676189b4ef3
Size

144KB
MD5

2038d144a64a412c819229cdf8871840
SHA1

5fae1fe7488681705958da9ae517adf6244e06b7
SHA256

239e5b5a70d0e9a7f64d480c80e0e0b6bbd783d42b979983981b8676189b4ef3
SHA512

d0c158e04a3e7b7514e38a0edd1bb810ab172caa5b0cacac4591791cbb1627b746e208c10c04383ba7c1c410ba3997c66ccc08b4413effc56185a16b634c6ae5
SSDEEP

3072:mzlQcjTST6x9BHas549o8rfcvNXrVGtMO4E:mJr9as5tOforVTU

Score

N/A

Malware Config

Signatures

Files

239e5b5a70d0e9a7f64d480c80e0e0b6bbd783d42b979983981b8676189b4ef3
.dll windows x86

5a16fd2a64f34f321a1c4f0a9e98447a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceFrequency
GetProcAddress
QueryPerformanceCounter
GetModuleHandleA
GetSystemInfo
lstrcmpiA
GetPriorityClass
GetVersionExA
GetThreadPriority
GetCurrentThread
FlushFileBuffers
CloseHandle
CreateFileA
SetThreadPriority
GlobalMemoryStatus
GetCurrentProcess
SetPriorityClass
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetCurrentThreadId
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
ExitProcess
Sleep
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetFilePointer
WriteFile
GetConsoleCP
GetConsoleMode
HeapSize
VirtualAlloc
HeapReAlloc
LoadLibraryA
InitializeCriticalSection
RtlUnwind
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW

user32

GetSystemMetrics
EnumDisplayDevicesA
EnumDisplaySettingsA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

winmm

mixerGetDevCapsA

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

Exports

Exports

SystemInformationGetAll
SystemInformationGetAllChar
SystemInformationGetDevice
SystemInformationGetSoftware
SystemInformationGetWindows

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5a16fd2a64f34f321a1c4f0a9e98447a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

winmm

version

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 44KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 4KB - Virtual size: 176B

.reloc Size: 8KB - Virtual size: 5KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 48KB - Virtual size: 44KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 4KB - Virtual size: 176B

.reloc
Size: 8KB - Virtual size: 5KB

.rmnet
Size: 60KB - Virtual size: 60KB