a74ce7a7ceeaa2c2c555c3f8ad29c1da710faa42ba199b16a2c4f03089fdd2ae

Sharing

Copy URL Twitter E-mail

General

Target

a74ce7a7ceeaa2c2c555c3f8ad29c1da710faa42ba199b16a2c4f03089fdd2ae
Size

163KB
MD5

2ad555f9f3caeae16220daab4eebe58c
SHA1

0bb16cd949cf2ff9ea5a41431554669e68fecc3c
SHA256

a74ce7a7ceeaa2c2c555c3f8ad29c1da710faa42ba199b16a2c4f03089fdd2ae
SHA512

4479b7e7d0bd141ea617625d617e2a861ac5f6c9e6edda0a2de526e848de302fbf2cde8f3593a508e92ddd432d499b2b32bc5c7e46a4cfdb26fb0f16f2a38457
SSDEEP

3072:9Z/gt/xPwEsjRU38C5AZ7QcnJxTBfR0m5JFIp:iKEmO8KAZv7TBJ02Fq

Score

N/A

Malware Config

Signatures

Files

a74ce7a7ceeaa2c2c555c3f8ad29c1da710faa42ba199b16a2c4f03089fdd2ae
.dll windows x86

e067c86945493f2b8f5243dc490a0adf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

wsock32

connect
WSAStartup
ioctlsocket
select
htons
getpeername
setsockopt
recv
socket
closesocket
send
getsockname

kernel32

GetProcAddress
SetFileAttributesA
Process32Next
GetSystemInfo
GetModuleHandleA
CreateToolhelp32Snapshot
GetVersionExA
GetSystemTime
GetComputerNameA
GlobalMemoryStatus
MapViewOfFile
UnmapViewOfFile
SetEvent
GetCurrentThreadId
OpenFileMappingA
GetPrivateProfileIntA
GetPrivateProfileStringA
InitializeCriticalSection
LeaveCriticalSection
GetWindowsDirectoryA
GetLocaleInfoA
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CreateFileA
InitializeCriticalSectionAndSpinCount
LoadLibraryA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
HeapReAlloc
VirtualAlloc
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
WriteFile
Process32First
CloseHandle
OpenEventA
GetExitCodeThread
Sleep
TerminateThread
WaitForSingleObject
EnterCriticalSection
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetEndOfFile
GetProcessHeap
CompareStringA
SetEnvironmentVariableA
CompareStringW
ExitThread
GetLastError
CreateThread
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
GetFileAttributesA
CreateDirectoryA
DeleteFileA
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
RaiseException
RtlUnwind
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapSize
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
SetStdHandle
SetFilePointer
MultiByteToWideChar
ReadFile

user32

GetDC
SetProcessWindowStation
GetWindowRect
OpenDesktopA
GetThreadDesktop
GetProcessWindowStation
CloseDesktop
OpenWindowStationA
SwitchDesktop
SetThreadDesktop
GetSystemMetrics
GetMessageA
SetTimer
KillTimer
FindWindowExA
TranslateMessage
GetForegroundWindow
GetWindowTextA
DispatchMessageA
FindWindowA

gdi32

DeleteDC
GetDIBits
CreateDCA
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt

advapi32

GetUserNameA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
CryptHashData
CryptDestroyHash
CryptDecrypt
CryptCreateHash
CryptEncrypt
CryptAcquireContextA
CryptReleaseContext
CryptDeriveKey

Sections

.text
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e067c86945493f2b8f5243dc490a0adf

Headers

DLL Characteristics

File Characteristics

Imports

winmm

wsock32

kernel32

user32

gdi32

advapi32

Sections

.text Size: 118KB - Virtual size: 118KB

.rdata Size: 29KB - Virtual size: 29KB

.data Size: 5KB - Virtual size: 13KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 118KB - Virtual size: 118KB

.rdata
Size: 29KB - Virtual size: 29KB

.data
Size: 5KB - Virtual size: 13KB

.reloc
Size: 9KB - Virtual size: 9KB