6f31a3a325320c3c7036f4acf8151b197031c6aa9c957d5aa6c34175215f2756

General

Target

6f31a3a325320c3c7036f4acf8151b197031c6aa9c957d5aa6c34175215f2756
Size

334KB
MD5

28a7e5f4dcc2f99193b97fbe61541a30
SHA1

b99fa5082757eb8239fa7313f886f34f5aa08d72
SHA256

6f31a3a325320c3c7036f4acf8151b197031c6aa9c957d5aa6c34175215f2756
SHA512

34d3f7154a306712038bf2b20c452f3114ed2ca01cc8ea6a3631da74878f2d743eb02a38f2724bfe5c9550c78bf7818e1df4347346b70489f1a40258a707d96d
SSDEEP

6144:lSwk/2D0Yk58t4ZjHlVMnf5WqBP5kmc4Etm/WTkwSbca6Xh:lNhD0YnWZjHlGf5WCkf4Em/WTrSbC

Score

N/A

Malware Config

Signatures

Files

6f31a3a325320c3c7036f4acf8151b197031c6aa9c957d5aa6c34175215f2756
.dll windows x86

16f6bcc2ed0878628ecfc01025dd0681

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList

kernel32

InitializeCriticalSectionAndSpinCount
WriteFile
WriteConsoleW
WideCharToMultiByte
CloseHandle
CreateFileA
CreateFileW
CreateThread
EnterCriticalSection
ExitProcess
FlushFileBuffers
FreeEnvironmentStringsW
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcessId
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetSystemTimeAsFileTime
GetTickCount
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
VirtualAlloc
InterlockedDecrement
InterlockedIncrement
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
LCMapStringW
LeaveCriticalSection
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
RtlUnwind
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
Sleep
TerminateProcess

user32

GetClassNameA
GetCursorPos
GetForegroundWindow
GetSystemMetrics
GetWindowRect
PostMessageA
FindWindowExA

Exports

Exports

Method_New
Number_Absolute
StringAType
_Pop
get_io_ptr
vLoadModule

Sections

.text
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16f6bcc2ed0878628ecfc01025dd0681

Headers

File Characteristics

Imports

setupapi

kernel32

user32

Exports

Exports

Sections

.text Size: 140KB - Virtual size: 139KB

.rdata Size: 53KB - Virtual size: 52KB

.data Size: 53KB - Virtual size: 54KB

.rsrc Size: 77KB - Virtual size: 76KB

.reloc Size: 10KB - Virtual size: 10KB

.text
Size: 140KB - Virtual size: 139KB

.rdata
Size: 53KB - Virtual size: 52KB

.data
Size: 53KB - Virtual size: 54KB

.rsrc
Size: 77KB - Virtual size: 76KB

.reloc
Size: 10KB - Virtual size: 10KB