487e90e04dd791aca5102b93b945bb8218dfc6292de30332e7d88329354fffc9

Sharing

Copy URL Twitter E-mail

General

Target

487e90e04dd791aca5102b93b945bb8218dfc6292de30332e7d88329354fffc9
Size

29KB
MD5

2658ed8ee8ec20d342c69d3240e5a0a4
SHA1

88c085aa14599f868b912a9647e691b9546a333c
SHA256

487e90e04dd791aca5102b93b945bb8218dfc6292de30332e7d88329354fffc9
SHA512

3dba23374fb988f1e2becbb0a0a89bf9731cb7e7fabbf824a74911a80442ada482663dfffbedfb1eafe838c7bdc652d5358989c0356bea4dd87184866056bab3
SSDEEP

384:stWdPZeDvEYhLmYtkAQFf7OCEFeisYpEfz71YbDY:TdwDvEqLmYpQZ7O1F2YpMzBYf

Score

N/A

Malware Config

Signatures

Files

487e90e04dd791aca5102b93b945bb8218dfc6292de30332e7d88329354fffc9
.dll windows x86

fcb199e30dafa3e2a032364c7c75b867

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
GetModuleHandleW
GetModuleFileNameW
FreeLibrary
VirtualQuery
GetProcessHeap
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
WideCharToMultiByte
MultiByteToWideChar
LoadLibraryExW
GetProcAddress
GetLastError
RaiseException
IsDebuggerPresent
DecodePointer
EncodePointer
IsProcessorFeaturePresent

user32

GetAsyncKeyState

msvcr120d

_wsplitpath_s
__crtUnhandledException
__crtTerminateProcess
_wmakepath_s
wcscpy_s
_except_handler4_common
__clean_type_info_names_internal
_onexit
__dllonexit
_calloc_dbg
_CrtDbgReportW
_unlock
_lock
_initterm_e
_initterm
_CrtSetCheckCount
_free_dbg
_malloc_dbg
_amsg_exit
__CppXcptFilter
_CRT_RTC_INITW
_crt_debugger_hook

Sections

.textbss
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fcb199e30dafa3e2a032364c7c75b867

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

msvcr120d

Sections

.textbss Size: - Virtual size: 64KB

.text Size: 15KB - Virtual size: 15KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.textbss
Size: - Virtual size: 64KB

.text
Size: 15KB - Virtual size: 15KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB