99d404f0ac1804a2bc898b1b11c4f1f465aa1a03d3b69c1fd90e6bdc6df3b351

General

Target

99d404f0ac1804a2bc898b1b11c4f1f465aa1a03d3b69c1fd90e6bdc6df3b351
Size

37KB
MD5

94a56b8c65284a6603ebeb2639db8a70
SHA1

adba0b4bc12e5e907316a47db6af49999869e8fa
SHA256

99d404f0ac1804a2bc898b1b11c4f1f465aa1a03d3b69c1fd90e6bdc6df3b351
SHA512

8aa091e430f6767eafc52e74f93e1a746241194f6aa364b0863dc428b5685aa35ee2baf90d6440f55d42711687027a263ab6f4fe0c54071fcbddbb63b98c377b
SSDEEP

768:v5x120XIivDX3j1yGkOCbzlErlgt3l25Xryo3N3SONzR:vP1RdvDX3jtkOCbzlErlgtoJyadN

Score

N/A

Malware Config

Signatures

Files

99d404f0ac1804a2bc898b1b11c4f1f465aa1a03d3b69c1fd90e6bdc6df3b351
.dll windows x86

e3422b33b4c08c05b4c5af3018a8bd67

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
ReadFile
GetFileInformationByHandle
Sleep
LeaveCriticalSection
EnterCriticalSection
CreateThread
GetCurrentProcessId
DeleteFileA
GetTickCount
ExitProcess
CreateMutexA
HeapCreate
LoadLibraryA
GetProcessHeap
OpenProcess
WideCharToMultiByte
CreateProcessA
VirtualAlloc
VirtualFree
GetLastError
CreateFileA
WriteFile
CloseHandle
HeapAlloc
InitializeCriticalSection
HeapFree

user32

GetForegroundWindow
GetCursorPos

advapi32

RegDeleteValueA
RegDeleteKeyA
RegCreateKeyA
RegSetValueExA
RegOpenKeyA
RegEnumKeyExA
RegEnumValueA
RegCloseKey
RegQueryValueExA
LookupAccountNameA
GetUserNameA
RegOpenKeyExA

shell32

SHGetSpecialFolderPathA
ShellExecuteA

ws2_32

inet_addr
WSAStartup
inet_ntoa
WSACleanup

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenA
InternetReadFile

Exports

Exports

Work

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e3422b33b4c08c05b4c5af3018a8bd67

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ws2_32

wininet

Exports

Exports

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB