93e84739b318a70e3dfba52ee820107cef6c461b06c66d9f8d4d1e6b2d6ac3f6

Sharing

Copy URL

Twitter E-mail

General

Target

93e84739b318a70e3dfba52ee820107cef6c461b06c66d9f8d4d1e6b2d6ac3f6
Size

11KB
MD5

234b53dec3ecb7fbc34222b224780080
SHA1

80559e117d1bf1c74b9686cb198c16cbd34a7412
SHA256

93e84739b318a70e3dfba52ee820107cef6c461b06c66d9f8d4d1e6b2d6ac3f6
SHA512

204bc5a9da3c538a8338f4ead3985b5123560f69548fea27d13cc40b152c114ec5a02ca56a292b0c4374243e3eea05454564ff67214926569a2a5ba16481143e
SSDEEP

192:1mfrBWGwL7cO9xEaWi3i8+NM7aUfpp7qt1XYd9RIRi7cX4aluW9hgFUVvzzWZXW+:16rBWGw4WCkb7qt1Xq9RIRi7a4alR9hv

Score

N/A

Malware Config

Signatures

Files

93e84739b318a70e3dfba52ee820107cef6c461b06c66d9f8d4d1e6b2d6ac3f6
.dll windows x86

7a97ef6a8856c53cd5ea77d43c0b25b8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetModuleFileNameW
CreateFileW
lstrlenW
GetLastError
SetLastError
MoveFileW
GlobalFree
FindClose
SetCurrentDirectoryW
Sleep
GlobalAlloc
lstrcatW
FindNextFileW
CloseHandle
GetVersion
DeleteFileW
lstrcpyW
CreateThread
GetSystemDirectoryW
GetVolumeInformationW
DeviceIoControl
WideCharToMultiByte
CreateMutexW
WriteFile
GetComputerNameW
WaitForSingleObject
MoveFileExW
CreateProcessW
SetErrorMode
SetEndOfFile
SetFilePointer
FindFirstFileW
lstrcmpiW

user32

wsprintfW

advapi32

SetServiceStatus
CryptDecrypt
CryptDestroyKey
CryptGenKey
CryptEncrypt
CryptImportKey
CryptReleaseContext
CryptAcquireContextW
CryptExportKey
RegisterServiceCtrlHandlerW

shell32

ord64

ntdll

ZwLoadDriver
memset
RtlInitUnicodeString
memmove
memcpy
_chkstk

wininet

InternetCloseHandle
InternetOpenW
InternetReadFile
InternetConnectW
HttpSendRequestW
InternetSetOptionW
HttpQueryInfoW
HttpOpenRequestW

ws2_32

gethostname
gethostbyname
htons

shlwapi

StrToIntW

iphlpapi

GetAdaptersInfo

Exports

Exports

ServiceMain

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a97ef6a8856c53cd5ea77d43c0b25b8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ntdll

wininet

ws2_32

shlwapi

iphlpapi

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: - Virtual size: 25KB

.rsrc Size: 1024B - Virtual size: 976B

.reloc Size: 1024B - Virtual size: 648B

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: - Virtual size: 25KB

.rsrc
Size: 1024B - Virtual size: 976B

.reloc
Size: 1024B - Virtual size: 648B