76067c0a0cb1a3ef8b3bc98e9239520a5378aef949f587a74b35448ab6c7650c

General

Target

76067c0a0cb1a3ef8b3bc98e9239520a5378aef949f587a74b35448ab6c7650c
Size

404KB
MD5

687aac79dd790c0390245a162757b6c1
SHA1

e7784efec02ac309c2413bb0d7cd99015588e4af
SHA256

76067c0a0cb1a3ef8b3bc98e9239520a5378aef949f587a74b35448ab6c7650c
SHA512

7664e4bc4851804552c701e3ae6c77f6dcdff5bdacfed515a1e392a93e798604fe2af49b567fee81db6c91a1992e12d6c7f3eaf90d59811585ebd45731230628
SSDEEP

3072:pUy2qKZkyPHzodRLLATKm402QJ6/8hqhV8RMaNvumVJOWkzBcC:6y2ryRLchEfExlBOWkzB

Score

N/A

Malware Config

Signatures

Files

76067c0a0cb1a3ef8b3bc98e9239520a5378aef949f587a74b35448ab6c7650c
.dll windows x86

e4b0530e285ea442d64c08ec7be366ab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

gethostname
ntohl
htonl

kernel32

GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedExchange
TerminateProcess
GetModuleHandleA
GetProcAddress
LoadLibraryA
Sleep
WaitForSingleObject
InterlockedCompareExchange
InterlockedIncrement
InitializeCriticalSection
InterlockedDecrement
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CloseHandle
ReleaseMutex
CreateSemaphoreA
CreateEventA
SignalObjectAndWait
ReleaseSemaphore
CreateMutexA
GetCurrentProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcessId

user32

MessageBoxA

iphlpapi

GetIfEntry
GetInterfaceInfo

Exports

Exports

CreateNetwork
CryModuleGetMemoryInfo

Sections

.text
Size: 308KB - Virtual size: 307KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4b0530e285ea442d64c08ec7be366ab

Headers

File Characteristics

Imports

wsock32

kernel32

user32

iphlpapi

Exports

Exports

Sections

.text Size: 308KB - Virtual size: 307KB

.rdata Size: 52KB - Virtual size: 50KB

.data Size: 12KB - Virtual size: 74KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 24KB - Virtual size: 22KB

.text
Size: 308KB - Virtual size: 307KB

.rdata
Size: 52KB - Virtual size: 50KB

.data
Size: 12KB - Virtual size: 74KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 24KB - Virtual size: 22KB