4eabe7d19350ddfa013b190b3949693f77ea8b0b4a45951213782aa100bf218a

General

Target

4eabe7d19350ddfa013b190b3949693f77ea8b0b4a45951213782aa100bf218a
Size

616KB
MD5

3a6a833c2b53fe2b8564cf6c75809e90
SHA1

6703dbab8d59415145ca874d8ded79ac824ca63c
SHA256

4eabe7d19350ddfa013b190b3949693f77ea8b0b4a45951213782aa100bf218a
SHA512

bce78af07bc804f15513beeee7235e4029cec7aef48142739f507c936d7bf9d646427949920393b17b62ce3e9f3a05ff725640b904cc39ecd8d056fc9efdfebb
SSDEEP

12288:QhC49ZX8o2qovIBD5K9Ozu+eWRCcDFjzkDk0OR:/49lx2qbBD5KoK3WEcDFjzkDkP

Score

N/A

Malware Config

Signatures

Files

4eabe7d19350ddfa013b190b3949693f77ea8b0b4a45951213782aa100bf218a
.dll windows x86

f2f1d0d1c35c1242f3c9a11f9c47af39

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteW
SHAddToRecentDocs
DragAcceptFiles
SHGetSpecialFolderLocation

kernel32

InterlockedExchange
GetModuleFileNameW
RaiseException
GetModuleHandleA
UnhandledExceptionFilter
WideCharToMultiByte
CloseHandle
SetUnhandledExceptionFilter
FreeLibrary
GetCurrentProcessId
CreateFileW
GetLastError
LeaveCriticalSection
InitializeCriticalSection
EnterCriticalSection
GetVersionExA
ReadFile
GetTickCount
LocalFree
InterlockedIncrement
GetDateFormatA
DeleteCriticalSection
QueryPerformanceCounter
GetCurrentThreadId
InterlockedDecrement
VirtualAlloc
WaitForSingleObject
VirtualFree
MultiByteToWideChar

advapi32

RegQueryValueExW
RegCloseKey
RegSetValueExW
RegQueryInfoKeyW
RegCreateKeyExW
RegOpenKeyExW

Exports

Exports

AsVoidPtr
EOFError
FillInfo
Method_Function4
Module_AddObject
Number_Negative
SetInterrupt
write_chunk
write_info

Sections

.text
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2f1d0d1c35c1242f3c9a11f9c47af39

Headers

File Characteristics

Imports

shell32

kernel32

advapi32

Exports

Exports

Sections

.text Size: 192KB - Virtual size: 190KB

.rdata Size: 88KB - Virtual size: 85KB

.data Size: 112KB - Virtual size: 112KB

.rsrc Size: 208KB - Virtual size: 206KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 192KB - Virtual size: 190KB

.rdata
Size: 88KB - Virtual size: 85KB

.data
Size: 112KB - Virtual size: 112KB

.rsrc
Size: 208KB - Virtual size: 206KB

.reloc
Size: 12KB - Virtual size: 11KB