12327ea142d118a865d59451f76d420a22771b6413e44420bd81529f6a1dc6b3

General

Target

12327ea142d118a865d59451f76d420a22771b6413e44420bd81529f6a1dc6b3
Size

124KB
MD5

384b07ca4c6bd8210943a84a6c830070
SHA1

4cdb2398ea97a88b2bc4a3750de4f02c9311e3f0
SHA256

12327ea142d118a865d59451f76d420a22771b6413e44420bd81529f6a1dc6b3
SHA512

88e3e2ef01b0836339f247b5a1b6a2b3ce4cb736788a850930d079a0059451b3251b041b13d65e4d9fd901152fbe590cd6a0ff7ff5acb3744faaea03e45dcc36
SSDEEP

3072:Bp1mj1XfyXjDZOMYufAw8CC/CxU5AoIunA5XM:Bp0XfktdffRCK0FnA5c

Score

N/A

Malware Config

Signatures

Files

12327ea142d118a865d59451f76d420a22771b6413e44420bd81529f6a1dc6b3
.dll windows x86

ec2c1864e8ead1b80319ab3f4c29c805

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
malloc
_except_handler3
_initterm
free
_stricmp

kernel32

InterlockedExchange
FreeLibrary
LocalAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
SetCurrentDirectoryA
SetCurrentDirectoryW
GetCurrentDirectoryA
LoadLibraryA
DisableThreadLibraryCalls
GetCurrentThreadId
GetModuleHandleA
GetProcAddress
LoadLibraryW
LoadLibraryExW
GetSystemDirectoryW
GetLastError
GetTickCount
TerminateProcess
GetCurrentProcess
RaiseException
SetUnhandledExceptionFilter
QueryPerformanceCounter

advapi32

RegOpenKeyExW
RegQueryValueExW

ole32

StringFromGUID2

Exports

Exports

EPLoadMSO
EPMsoGimmeFile
EPMsoGimmeFileByName
EPMsoLoadLibrary
EPMsoLoadLibraryByName
SetupGimme

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ec2c1864e8ead1b80319ab3f4c29c805

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

ole32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 120B

.rsrc Size: 1024B - Virtual size: 944B

.reloc Size: 1024B - Virtual size: 728B

.text Size: 108KB - Virtual size: 112KB

.text
Size: 12KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 120B

.rsrc
Size: 1024B - Virtual size: 944B

.reloc
Size: 1024B - Virtual size: 728B

.text
Size: 108KB - Virtual size: 112KB