ba0e3290742b02246137f7c15e935c3105df95391664657affffeb875505e1b6

General

Target

ba0e3290742b02246137f7c15e935c3105df95391664657affffeb875505e1b6
Size

48KB
MD5

e431e2d17430ad18092a9d2cdaf64341
SHA1

ed74a8eb03b8de9b242b819607d9607be13f89bc
SHA256

ba0e3290742b02246137f7c15e935c3105df95391664657affffeb875505e1b6
SHA512

1b8d40b601e0d03c920f01db5128f35aad6b6556e694a84bf5e888db92c1b4f0de5fe6e050ce1e57bc10b2bb70ee90c6f4728891b92980f78693f3a5900456ed
SSDEEP

384:XxZG8MDv1natjldxDOMJyB7osOqND/rNjT1aPtzxBFmlyJomxUPV1JIQKjhonuv:BZBmaXDOMJadBdT1sL3x4VTIQAouv

Score

N/A

Malware Config

Signatures

Files

ba0e3290742b02246137f7c15e935c3105df95391664657affffeb875505e1b6
.dll windows x86

425441219b368c6ee2528e8189402417

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
CloseHandle
ReleaseMutex
WaitForSingleObject
CreateMutexA
ReadFile
SetFilePointer
CreateFileA
DeviceIoControl
GetLastError
GetProcAddress
LoadLibraryA
SetFileAttributesA
SetEndOfFile
FlushFileBuffers
WriteFile
lstrlenA
lstrcpyA
lstrcatA
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
RtlUnwind
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
ExitProcess
GetVersionExA
GetCurrentProcess
HeapReAlloc
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
SetUnhandledExceptionFilter
IsBadWritePtr
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
LCMapStringA
LCMapStringW

user32

wsprintfA

Exports

Exports

CreateSAFactory
CreateSALog

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

425441219b368c6ee2528e8189402417

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 24KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 976B

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 28KB - Virtual size: 24KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 976B

.reloc
Size: 4KB - Virtual size: 1KB