c9d17aa2f2fe1dd62f3772766237dbc3ba79e0ca8698a2d8d6e62baf1d1edeac

General

Target

c9d17aa2f2fe1dd62f3772766237dbc3ba79e0ca8698a2d8d6e62baf1d1edeac
Size

125KB
MD5

76477bbd905de7b6bd572acc0f39e50a
SHA1

e8a7482dc7806013a769c8cba56afe44e83f45f3
SHA256

c9d17aa2f2fe1dd62f3772766237dbc3ba79e0ca8698a2d8d6e62baf1d1edeac
SHA512

fa4aa37101a57ac394b6dafdd545cfd94701112419086ed3ae7c9f46cb806289ee14f57fbd9abf2fa55a07fc7ff8904a930e9d966938d934c58304f9f26dd6f8
SSDEEP

1536:J2bKKlmWNCuRXGWNnCrv9mL1wfKjczsUMK0SftF9t6F3dzjQV0XFiUar:kbj0Wcu1dNCrVE6fhoSFQpNVFnar

Score

N/A

Malware Config

Signatures

Files

c9d17aa2f2fe1dd62f3772766237dbc3ba79e0ca8698a2d8d6e62baf1d1edeac
.dll windows x86

796b1ac7041886e7ecbabedd5bef8cf7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
GetLocaleInfoA
HeapAlloc
CreateNamedPipeA
GetCPInfo
GetEnvironmentStringsW
UnmapViewOfFile
VirtualQuery
GetModuleHandleA
WaitForMultipleObjects
SetEvent
FreeEnvironmentStringsA
CreateThread
SetUnhandledExceptionFilter
WriteFile
GetSystemTimeAsFileTime
GetModuleFileNameA
GetEnvironmentStrings
GetFileType
GetStartupInfoA
GetCurrentProcessId
CreateMutexW
VirtualProtect
DeleteTimerQueueTimer
GetACP
InterlockedCompareExchange
InterlockedDecrement
ResetEvent
WideCharToMultiByte
InterlockedExchange
lstrcpyW
HeapDestroy
GetOEMCP
OpenProcess
GetTickCount
SetLastError
DisconnectNamedPipe
CreateTimerQueueTimer
RtlUnwind
CreateEventA
IsBadCodePtr
WaitForSingleObject
LCMapStringA
FreeEnvironmentStringsW
GetCurrentThreadId
QueryPerformanceCounter
InitializeCriticalSection
ReleaseMutex
HeapFree
DeleteCriticalSection
IsBadReadPtr
GetLastError
ConnectNamedPipe
GetSystemInfo
MultiByteToWideChar
DuplicateHandle
LoadLibraryA
GetStdHandle
ExitThread
CopyFileA
Sleep
InterlockedExchangeAdd
LeaveCriticalSection

user32

DrawIcon
CreateIconFromResource
wsprintfW
LoadIconA

advapi32

SetSecurityDescriptorDacl
InitializeSecurityDescriptor

Exports

Exports

dqgwkyp

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

796b1ac7041886e7ecbabedd5bef8cf7

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 69KB - Virtual size: 69KB

.data Size: 35KB - Virtual size: 65KB

.rsrc Size: 18KB - Virtual size: 18KB

.reloc Size: 1024B - Virtual size: 712B

.text
Size: 69KB - Virtual size: 69KB

.data
Size: 35KB - Virtual size: 65KB

.rsrc
Size: 18KB - Virtual size: 18KB

.reloc
Size: 1024B - Virtual size: 712B