eeee90beb98dd711ac9d07ec3e3aa4a80e392ea46dc8f6ea173aeb9d87d2d991

Sharing

Copy URL Twitter E-mail

General

Target

eeee90beb98dd711ac9d07ec3e3aa4a80e392ea46dc8f6ea173aeb9d87d2d991
Size

357KB
MD5

bf38c01b46ad36f6205de6cf18b85a92
SHA1

f3b7f5dfda212544bb5351f6c5a4b7e0627861e6
SHA256

eeee90beb98dd711ac9d07ec3e3aa4a80e392ea46dc8f6ea173aeb9d87d2d991
SHA512

e814f6c2cbbe560899bbc9e4b261de3b4f6111258f0247e77dac3cdae6c80b163a9034ed54ad684dca4e7b500ccbb611407074575211e1f049fc7ef3f00f941d
SSDEEP

6144:I5OkSESBcoShh73+P8fNRVGK0yVgVzWYNN/IQJnDE7P81O+yswM9i56FAlw4SEKY:IAAGx1/le0jELKTi75LpWG0U

Score

N/A

Malware Config

Signatures

Files

eeee90beb98dd711ac9d07ec3e3aa4a80e392ea46dc8f6ea173aeb9d87d2d991
.dll windows x86

889312987ea82e2546b90532b108b836

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoTaskMemFree
CoInitializeEx
CLSIDFromString

advapi32

DeregisterEventSource
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

kernel32

WideCharToMultiByte
WriteFile
HeapAlloc
WaitForSingleObject
DebugBreak
DeleteCriticalSection
DeleteTimerQueueTimer
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
ExpandEnvironmentStringsW
FindFirstVolumeMountPointW
FlushFileBuffers
FormatMessageA
FormatMessageW
GetACP
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetExitCodeThread
GetFileSize
GetLastError
GetLocalTime
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetOEMCP
GetProcessHeap
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetSystemInfo
GetSystemTimeAsFileTime
GetTickCount
GetVersion
GlobalAlloc
GlobalFree
VirtualProtect
HeapCreate
HeapDestroy
HeapFree
HeapLock
HeapReAlloc
HeapUnlock
HeapWalk
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedExchangeAdd
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LocalAlloc
LocalReAlloc
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
ReadFile
RtlUnwind
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc

oleaut32

VarUI2FromUI4
VariantInit
VarI4FromI1
SysAllocString
VarBstrFromCy
VarCyFromI2

Exports

Exports

ConfigureCall
CopyStrmPrmToRawObj
CreateFolder
EnumCustomFunctionSettingNext
EnumTvValueRelease
EventSynchronize
FlashImageItemProperty
Free
GetImageFormatAttribute
GetMaximumZoomPos
InitEx
MutexOperation
WGLGetDevice
WriteDevParamToRawEx

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

889312987ea82e2546b90532b108b836

Headers

DLL Characteristics

File Characteristics

Imports

ole32

advapi32

kernel32

oleaut32

Exports

Exports

Sections

.text Size: 47KB - Virtual size: 47KB

.rdata Size: 156KB - Virtual size: 156KB

.data Size: 1024B - Virtual size: 2KB

.rsrc Size: 149KB - Virtual size: 148KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 47KB - Virtual size: 47KB

.rdata
Size: 156KB - Virtual size: 156KB

.data
Size: 1024B - Virtual size: 2KB

.rsrc
Size: 149KB - Virtual size: 148KB

.reloc
Size: 2KB - Virtual size: 2KB