39eddc9060cd124106a9a501b9efc0f339d6a879d8bdc7c43876f9089b5ca0a7

Sharing

Copy URL

Twitter E-mail

General

Target

39eddc9060cd124106a9a501b9efc0f339d6a879d8bdc7c43876f9089b5ca0a7
Size

167KB
MD5

91f39d8a5071103c50cf54215f5d4a40
SHA1

93f1c731f1d137c9d8abc6232867366b12cb170d
SHA256

39eddc9060cd124106a9a501b9efc0f339d6a879d8bdc7c43876f9089b5ca0a7
SHA512

960970488677066e69496ffcec1d432e0991b9fda2f193c6c48b16e976bd1c7848b430e5ed1270c021acdf1136658d1ffa73ca31ff028a8704dab940f46db265
SSDEEP

3072:RFqUscZqqvqCvk2J2DxAux4NNla2XDmGiZ/fKecgw6:bqUsAvqCvk+24U2XDmGO/

Score

N/A

Malware Config

Signatures

Files

39eddc9060cd124106a9a501b9efc0f339d6a879d8bdc7c43876f9089b5ca0a7
.dll windows x86

3928724453001da64b19fce378c7d1fe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
FreeLibrary
GetProcAddress
LoadLibraryA
lstrcmpA
lstrlenA
lstrcpyA
SetLastError
TlsFree
SetEndOfFile
GetLocaleInfoW
GetLocaleInfoA
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
CreateFileA
FlushFileBuffers
SetStdHandle
HeapAlloc
HeapFree
RtlUnwind
HeapReAlloc
GetCommandLineA
GetModuleHandleA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
HeapDestroy
GetWindowsDirectoryA
VirtualFree
VirtualAlloc
GetCurrentThreadId
TlsSetValue
TlsAlloc
GetCurrentProcess
TlsGetValue
GetLastError
CloseHandle
RaiseException
SetFilePointer
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
ReadFile
TerminateProcess
GetEnvironmentStrings
HeapSize
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
GetStringTypeA
GetStringTypeW

user32

wsprintfA

ltkrn13n

ord274
ord271
ord285
ord272
ord157
ord192
ord282
ord284
ord283
ord189
ord188
ord196
ord163
ord273
ord191
ord190

Exports

Exports

DllMain
fltDeletePage
fltInfo
fltLoad
fltSave

Sections

.text
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3928724453001da64b19fce378c7d1fe

Headers

File Characteristics

Imports

kernel32

user32

ltkrn13n

Exports

Exports

Sections

.text Size: 130KB - Virtual size: 129KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 15KB - Virtual size: 20KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 130KB - Virtual size: 129KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 15KB - Virtual size: 20KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 7KB - Virtual size: 7KB