8bb468812ecaa62874d84465f0a88f4007b2ae945c0748339515293c07d78b5b

Sharing

Copy URL Twitter E-mail

General

Target

8bb468812ecaa62874d84465f0a88f4007b2ae945c0748339515293c07d78b5b
Size

113KB
MD5

28ed47e7e167c1b4c0e6809c1194271d
SHA1

783a4b20a983e3765c50a02e185e497e0d418de2
SHA256

8bb468812ecaa62874d84465f0a88f4007b2ae945c0748339515293c07d78b5b
SHA512

dcdde4a2e797876d829896c6c99dfa9059ba2d7ca82fad4787c214daf3588e2502475b21db517e9b8b851cee1af85d2a11a8b72c5d81bf060d8e2d99ac61c9d7
SSDEEP

1536:2H4JkaXDUNnRU2HcrYEpQaKFbxOu6Qp7K22VvGEPh+BxI6iN+cWOqv11ubcnoYyF:JjDUMry3/FQxvGih+BCacK1mcntK/

Score

N/A

Malware Config

Signatures

Files

8bb468812ecaa62874d84465f0a88f4007b2ae945c0748339515293c07d78b5b
.dll windows x86

b82ce8ee05dec9510d24411cefa5a0af

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsAlloc
LoadLibraryA
GetProcAddress
SMapLS_IP_EBP_32
SMapLS_IP_EBP_36
SMapLS_IP_EBP_8
SUnMapLS_IP_EBP_12
ThunkConnect32
SUnMapLS_IP_EBP_20
SUnMapLS_IP_EBP_16
SUnMapLS_IP_EBP_32
SUnMapLS_IP_EBP_36
SUnMapLS_IP_EBP_8
GetEnvironmentStrings
GetCommandLineA
GetVersion
ExitProcess
GetCurrentThreadId
TlsSetValue
SMapLS_IP_EBP_12
TlsFree
TlsGetValue
VirtualFree
VirtualAlloc
GetModuleFileNameA
GetACP
GetOEMCP
GetCPInfo
GetStdHandle
GetFileType
GetStartupInfoA
WriteFile
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
TlsAlloc
LoadLibraryA
GetProcAddress
SMapLS_IP_EBP_32
SMapLS_IP_EBP_36
SMapLS_IP_EBP_8
SUnMapLS_IP_EBP_12
ThunkConnect32
SUnMapLS_IP_EBP_20
SUnMapLS_IP_EBP_16
SUnMapLS_IP_EBP_32
SUnMapLS_IP_EBP_36
SUnMapLS_IP_EBP_8
GetEnvironmentStrings
GetCommandLineA
GetVersion
ExitProcess
GetCurrentThreadId
TlsSetValue
SMapLS_IP_EBP_12
TlsFree
TlsGetValue
VirtualFree
VirtualAlloc
GetModuleFileNameA
GetACP
GetOEMCP
GetCPInfo
GetStdHandle
GetFileType
GetStartupInfoA
WriteFile
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError

Exports

Exports

_DLL32CallBJDeviceMode@32
_DLL32CallFreeLibrary@4
_DLL32CallGetProcAddress@8
_DLL32CallLoadLibrary@4
thk_ThunkData32

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 217B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b82ce8ee05dec9510d24411cefa5a0af

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 5KB

.bss Size: - Virtual size: 1KB

.data Size: 4KB - Virtual size: 4KB

.idata Size: 1KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 217B

.rsrc Size: 98KB - Virtual size: 98KB

.reloc Size: 1024B - Virtual size: 664B

.text
Size: 6KB - Virtual size: 5KB

.bss
Size: - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 4KB

.idata
Size: 1KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 217B

.rsrc
Size: 98KB - Virtual size: 98KB

.reloc
Size: 1024B - Virtual size: 664B