f1bbbe6890bcf10694f4d734e17b46f2b7db5f07a29fcadf37bf8e6b5675d0ff

General

Target

f1bbbe6890bcf10694f4d734e17b46f2b7db5f07a29fcadf37bf8e6b5675d0ff
Size

37KB
MD5

df3f814e6e85cbb311376f783394d6df
SHA1

fd9bc218e59eb47a84be8d820c3c9124da996e3a
SHA256

f1bbbe6890bcf10694f4d734e17b46f2b7db5f07a29fcadf37bf8e6b5675d0ff
SHA512

3f37c4cf424522783884e334d8ae3ff21599e130366259531b86bf574b76c9a5df28fc049d3124bfcc47200479788d2994b837ed095a74806818f63e38378e1b
SSDEEP

768:W4tufZL85344T9LOHdRjjvIVMRhct4ml5PSeMcgHIh:Wav534Sk92VGct4ml5tgHIh

Score

N/A

Malware Config

Signatures

Files

f1bbbe6890bcf10694f4d734e17b46f2b7db5f07a29fcadf37bf8e6b5675d0ff
.dll windows x86

f5b5e0c889de44e4fe661e6043853ae9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetProcAddress
SetErrorMode
lstrcpyA
GetModuleFileNameA
FreeLibrary
lstrcmpA
lstrlenA
HeapDestroy
HeapCreate
LCMapStringA
GetStringTypeW
LCMapStringW
VirtualAlloc
GetStringTypeA
HeapFree
WriteFile
HeapAlloc
GetEnvironmentStringsW
FreeEnvironmentStringsW
WideCharToMultiByte
MultiByteToWideChar
FreeEnvironmentStringsA
GetEnvironmentStrings
GetACP
GetCommandLineA
GetModuleHandleA
LoadLibraryA
ExitProcess
TerminateProcess
GetCurrentProcess
GetCPInfo
GetOEMCP
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA

user32

wsprintfA

ltkrn13n

ord271
ord274
ord192
ord285
ord272
ord189
ord134
ord163
ord273
ord188
ord190
ord282
ord194
ord191
ord283

Exports

Exports

DllMain
fltInfo
fltLoad
fltSave

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f5b5e0c889de44e4fe661e6043853ae9

Headers

File Characteristics

Imports

kernel32

user32

ltkrn13n

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 5KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 5KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB