11c7bc3e73b7457e8c194513dd98e6e797b51b40b4120fe83fee847d0f131704

Sharing

Copy URL Twitter E-mail

General

Target

11c7bc3e73b7457e8c194513dd98e6e797b51b40b4120fe83fee847d0f131704
Size

408KB
MD5

9b695fc7810ba0727f7d448d7137d040
SHA1

27fce1d46fe26a21138ebc76c669030fa2c60ca4
SHA256

11c7bc3e73b7457e8c194513dd98e6e797b51b40b4120fe83fee847d0f131704
SHA512

2e9f2bf7cabbf63546edae89ba5a51c3e7a5f8bdda2bf9122f1c88639bc16e5b0836a2757c29e19103ec8b216628dd305cac2d68da82a4a3038891259cf7edbf
SSDEEP

12288:EnhW9+KIW3qOIAwHrG938o0tTpvOjvkPG+gpUTlwp7Y:sQgvNO+C3sXOLCgmA7Y

Score

N/A

Malware Config

Signatures

Files

11c7bc3e73b7457e8c194513dd98e6e797b51b40b4120fe83fee847d0f131704
.dll windows x86

2479f208f9e4fc8b73134be320784b3c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
InitializeCriticalSection
RaiseException
LeaveCriticalSection
GetTickCount
CloseHandle
InterlockedDecrement
GetModuleFileNameW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
lstrlenW
GetModuleHandleA
lstrcmpiW
GetVersionExA
CreateFileW
LocalFree
GetModuleHandleW
LoadResource
FreeLibrary
InterlockedExchange
ReadFile
GetDateFormatA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
WaitForSingleObject
MultiByteToWideChar
WideCharToMultiByte
VirtualAlloc
TerminateProcess
SetEvent
InterlockedCompareExchange
GetSystemTimeAsFileTime
GlobalAlloc
GetLastError
InterlockedIncrement

shell32

ShellExecuteW

ole32

CoTaskMemRealloc
CoCreateInstance
CoTaskMemAlloc
CoUninitialize
CoInitializeEx
CoInitialize

advapi32

RegOpenKeyExW
RegSetValueExW
RegQueryInfoKeyW
RegCreateKeyExW
RegQueryValueExW
RegCloseKey

oleaut32

SysStringLen
SysFreeString
RegisterTypeLi
SysAllocString
LoadTypeLi
UnRegisterTypeLi
VarUI4FromStr

Exports

Exports

ProgramText
Realloc
TabError
_Type
destroy_read_struct
vGetFileA
warning

Sections

.text
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2479f208f9e4fc8b73134be320784b3c

Headers

File Characteristics

Imports

kernel32

shell32

ole32

advapi32

oleaut32

Exports

Exports

Sections

.text Size: 192KB - Virtual size: 190KB

.rdata Size: 76KB - Virtual size: 73KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 56KB - Virtual size: 55KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 192KB - Virtual size: 190KB

.rdata
Size: 76KB - Virtual size: 73KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 56KB - Virtual size: 55KB

.reloc
Size: 12KB - Virtual size: 11KB