98823ff5bc8bb81cd1e59bed597dd906003163598c6cf2dbdb81b497f6889a73

Sharing

Copy URL

Twitter E-mail

General

Target

98823ff5bc8bb81cd1e59bed597dd906003163598c6cf2dbdb81b497f6889a73
Size

184KB
MD5

534414a5b1a71bef8ca0163248501150
SHA1

eb77fe1d62892bbd0756bed9fd95712511f9da9d
SHA256

98823ff5bc8bb81cd1e59bed597dd906003163598c6cf2dbdb81b497f6889a73
SHA512

19e45b43185d7910ab010af47c84b2ac6b7ade7f35412a8a0d54c28cc58ea0afdf0213100b0f5580b77f39ff03458918de9fb4a72cdb24e243035ba6005369b5
SSDEEP

3072:LP5UeiqAaCZiRuVFklwUOzBflaPRyZ2pPoQ:dUeixR8iklw3z1lyAZ2

Score

N/A

Malware Config

Signatures

Files

98823ff5bc8bb81cd1e59bed597dd906003163598c6cf2dbdb81b497f6889a73
.dll windows x86

df19bfc04346f47cab54a1810e2c1c3c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
GetTickCount
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
CreateFileA
CompareStringW
CompareStringA
InterlockedExchange
HeapSize
RtlUnwind
InitializeCriticalSection
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
CopyFileW
GetCPInfo
GetOEMCP
TlsSetValue
TlsFree
TlsAlloc
ReadFile
WriteFile
GetStartupInfoA
GetFileType
GetStdHandle
WideCharToMultiByte
HeapFree
HeapReAlloc
HeapAlloc
GetVersionExA
GetCurrentThreadId
ExitThread
GetFileAttributesA
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcess
GetCommandLineA
CreateProcessA
GetExitCodeProcess
CloseHandle
GetLastError
FormatMessageA
LocalFree
QueryPerformanceFrequency
QueryPerformanceCounter
GetModuleFileNameA
IsSystemResumeAutomatic
ExitProcess
SetCurrentDirectoryA
UnhandledExceptionFilter
TerminateProcess
SetUnhandledExceptionFilter

msvcrt

memset

powrprof

GetPwrCapabilities

Exports

Exports

FindMemoryTest

Sections

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 538KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df19bfc04346f47cab54a1810e2c1c3c

Headers

File Characteristics

Imports

kernel32

msvcrt

powrprof

Exports

Exports

Sections

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 538KB

.idata Size: 4KB - Virtual size: 2KB

fdata Size: 8KB - Virtual size: 5KB

.code Size: 100KB - Virtual size: 98KB

.rsrc Size: 56KB - Virtual size: 52KB

.reloc Size: 4KB - Virtual size: 1KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 538KB

.idata
Size: 4KB - Virtual size: 2KB

fdata
Size: 8KB - Virtual size: 5KB

.code
Size: 100KB - Virtual size: 98KB

.rsrc
Size: 56KB - Virtual size: 52KB

.reloc
Size: 4KB - Virtual size: 1KB