49d4587cc37dba4ed3f3836ed9094198cd7ee027afe341221cf9535884e70799

Sharing

Copy URL Twitter E-mail

General

Target

49d4587cc37dba4ed3f3836ed9094198cd7ee027afe341221cf9535884e70799
Size

539KB
MD5

e2820492fdc44b9cc8b0eff1f35fb480
SHA1

45d612a621553e04d7ab80ec0c082ffa52e0ac8f
SHA256

49d4587cc37dba4ed3f3836ed9094198cd7ee027afe341221cf9535884e70799
SHA512

908614a34a4e796f9a7cdfb5ee12f33fd9a357ca4e42eeb0c04943613abe3ee12fc9c0e8ea4bf2bf6d1592b9e11c8871ff64d2e3e33fda23f82a325c7096c160
SSDEEP

12288:/9G2FzR3N//wgay2lXxNkiXuU8qzJCBOqvOLw:/9Z9mgayUXsezY0qOw

Score

N/A

Malware Config

Signatures

Files

49d4587cc37dba4ed3f3836ed9094198cd7ee027afe341221cf9535884e70799
.dll windows x86

08d52fb3b7ad5850cb869f95f4fd1993

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExW
UnhandledExceptionFilter
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

GetSystemMetrics

advapi32

GetUserNameA

shell32

ord680

ws2_32

freeaddrinfo

iphlpapi

GetAdaptersInfo

Exports

Exports

??0CvAutoLog@@QAE@ABV0@@Z
??0CvAutoLog@@QAE@XZ
??1CvAutoLog@@QAE@XZ
??4CvAutoLog@@QAEAAV0@ABV0@@Z
?VS_Logout@CvAutoLog@@QAEXXZ
?VS_Ping@CvAutoLog@@QAEXXZ
?VS_ReportStatInfo_Init@CvAutoLog@@QAEII@Z

Sections

.text
Size: 195KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vng0
Size: 193KB - Virtual size: 193KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vng1
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 434B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

08d52fb3b7ad5850cb869f95f4fd1993

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ws2_32

iphlpapi

Exports

Exports

Sections

.text Size: 195KB - Virtual size: 195KB

.rdata Size: 51KB - Virtual size: 50KB

.data Size: 10KB - Virtual size: 19KB

.tls Size: 512B - Virtual size: 2B

.vng0 Size: 193KB - Virtual size: 193KB

.vng1 Size: 72KB - Virtual size: 72KB

.reloc Size: 14KB - Virtual size: 14KB

.rsrc Size: 512B - Virtual size: 434B

.text
Size: 195KB - Virtual size: 195KB

.rdata
Size: 51KB - Virtual size: 50KB

.data
Size: 10KB - Virtual size: 19KB

.tls
Size: 512B - Virtual size: 2B

.vng0
Size: 193KB - Virtual size: 193KB

.vng1
Size: 72KB - Virtual size: 72KB

.reloc
Size: 14KB - Virtual size: 14KB

.rsrc
Size: 512B - Virtual size: 434B