915e70d7ed10ba3db4ff8cc87ad9ddf337da8d9b37a8ac5cd39d0da26ee94534

General

Target

915e70d7ed10ba3db4ff8cc87ad9ddf337da8d9b37a8ac5cd39d0da26ee94534
Size

29KB
MD5

72b6d8376f245d025d3c94a9153384e7
SHA1

b0beb710e55ba1ce06ffd9c7e254e20f7e7f4055
SHA256

915e70d7ed10ba3db4ff8cc87ad9ddf337da8d9b37a8ac5cd39d0da26ee94534
SHA512

3cdab8bd7c3dac2ee990deedab7bbcb9fc73d8cc6d366a233d0e81bb7dcbf95cc186c11b26b3cd165f8dbca85879723191ec08e79d8d227632866278bc00783e
SSDEEP

384:lzOw5VoXlRwvJizdDodf4c6QyqQXSHJR7p4ZwYtAE7bPbqoV8rIE:478izCrRES14Oo9PbXWrT

Score

N/A

Malware Config

Signatures

Files

915e70d7ed10ba3db4ff8cc87ad9ddf337da8d9b37a8ac5cd39d0da26ee94534
.dll windows x86

00da0de6943b12843a6876ce86b36166

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
OutputDebugStringA
ExitProcess
TerminateProcess
VirtualAlloc
HeapAlloc
LoadLibraryA
WriteFile
WideCharToMultiByte
HeapFree
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetOEMCP
GetCPInfo
GetModuleFileNameA
GetACP
GetStdHandle
GetFileType
GetStartupInfoA
GetCommandLineA
GetProcAddress
GetModuleHandleA
lstrcpyA
VirtualFree
GetCurrentProcess
HeapDestroy
HeapCreate
SetHandleCount

ltkrn13n

ord201
ord116
ord129
ord192
ord188
ord123
ord189
ord101
ord134
ord282
ord100
ord131
ord163
ord125
ord137
ord141
ord190
ord283
ord191

Exports

Exports

DllMain
fltDeletePage
fltInfo
fltLoad
fltSave

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 1010B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

00da0de6943b12843a6876ce86b36166

Headers

File Characteristics

Imports

kernel32

ltkrn13n

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 3KB

.idata Size: 1024B - Virtual size: 1010B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 920B

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 3KB

.idata
Size: 1024B - Virtual size: 1010B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 920B