5db7aee8f26ab373854793bbe6ec03cb25717cc87d21f4de3285a2e586fae600

Sharing

Copy URL Twitter E-mail

General

Target

5db7aee8f26ab373854793bbe6ec03cb25717cc87d21f4de3285a2e586fae600
Size

652KB
MD5

2345edf426f396a3d313953215efaf71
SHA1

c9eafeac4d7cfbd3383bb9e04644a12d94b7aa1c
SHA256

5db7aee8f26ab373854793bbe6ec03cb25717cc87d21f4de3285a2e586fae600
SHA512

a62857941d71138a313882bca1beb7823c39671cf440cce014ad8e069791e1e374db605f159650151bc5247286cd7cb9abdfc7839295d38d960539749bb551bb
SSDEEP

12288:rlzPHcfvb/N1iyxjqwRlRh7yZDVAK1n62owvcyWjei2G:rBHcfvbSykOlXUDVAcB8OG

Score

N/A

Malware Config

Signatures

Files

5db7aee8f26ab373854793bbe6ec03cb25717cc87d21f4de3285a2e586fae600
.dll windows x86

5a0d6d1e74db935f5d002048440869ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

socket
ntohs
ntohl
gethostname

kernel32

AreFileApisANSI
CloseHandle
CompareFileTime
ContinueDebugEvent
CreateFileA
DeleteCriticalSection
DeleteTimerQueueTimer
DisconnectNamedPipe
DuplicateHandle
EnterCriticalSection
ExitProcess
FindClose
FindFirstFileA
FreeEnvironmentStringsA
FreeLibrary
FreeUserPhysicalPages
GetCPInfo
GetCommandLineA
GetConsoleScreenBufferInfo
GetCurrentConsoleFont
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetDiskFreeSpaceA
GetEnvironmentStringsA
GetFileAttributesA
GetFileAttributesW
GetFileSize
GetFileType
GetHandleInformation
GetLastError
GetLocalTime
GetLocaleInfoA
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetStartupInfoA
GetStringTypeA
GetStringTypeExA
GetStringTypeW
GetSystemDefaultLCID
GetSystemInfo
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetUserDefaultLCID
GetVersion
GetVersionExA
GlobalAlloc
GlobalFree
GlobalLock
GlobalMemoryStatus
GlobalReAlloc
GlobalUnlock
HeapAlloc
HeapCompact
HeapFree
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
IsDBCSLeadByte
IsDBCSLeadByteEx
LCMapStringA
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LocalHandle
MultiByteToWideChar
PostQueuedCompletionStatus
Process32FirstW
QueryPerformanceCounter
ReadFile
ResetEvent
ResumeThread
RtlUnwind
SetCommMask
SetEndOfFile
SetEnvironmentVariableA
SetEvent
SetFilePointerEx
SetFileTime
SetLastError
SetThreadLocale
SetupComm
SystemTimeToFileTime
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
WaitForSingleObject
WideCharToMultiByte
lstrcpynA
IsValidLocale

oleaut32

LPSAFEARRAY_Unmarshal
SafeArrayGetElement
SafeArrayGetUBound
SafeArrayPtrOfIndex
SafeArrayPutElement
SysAllocStringLen
SysFreeString
SysReAllocStringLen
VarUI1FromDisp
VarUI2FromDate
VariantChangeType
VariantClear
VariantCopy
VariantCopyInd
VariantInit

user32

wsprintfA
LoadStringA
GetKeyboardType
EditWndProc
CreateIconIndirect
CharNextA

advapi32

RegCloseKey
RegOpenKeyExA
SetKernelObjectSecurity
AreAllAccessesGranted

setupapi

CM_Get_Sibling
SetupCloseInfFile
SetupDiDeleteDeviceInterfaceData
SetupOpenLog
SetupUninstallNewlyCopiedInfs
CM_Set_DevNode_Problem

Exports

Exports

GC_Del
Keys
Long_AsVoidPtr
_Discard
_FiniInterrupts

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 460KB - Virtual size: 459KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a0d6d1e74db935f5d002048440869ad

Headers

File Characteristics

Imports

wsock32

kernel32

oleaut32

user32

advapi32

setupapi

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 460KB - Virtual size: 459KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 460KB - Virtual size: 459KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 6KB - Virtual size: 6KB