3d718a885b9f111caff98f95f723b7e810b3fa9ae548f065703ae80b5541b735

General

Target

3d718a885b9f111caff98f95f723b7e810b3fa9ae548f065703ae80b5541b735
Size

63KB
MD5

3529054bc77a180eae7f006918d243ec
SHA1

834a2df3eaaf3281b94805aedeb72ccfcdd014b8
SHA256

3d718a885b9f111caff98f95f723b7e810b3fa9ae548f065703ae80b5541b735
SHA512

9883fe9329eeaa47cba61b713ac014865cc3ebc7fcf7f9136461e47bf369de61ab2a09b7bb2f1697d43ad9e74d5b7812c9f4a1c0f88b5db880dfee5b8db603d8
SSDEEP

768:jKaX9OLOCrDF9L7W8+h+FG0vVagx/gdeQtmb8PkIYgLa10FojCj5wGcQa:+ygtnj7WVo9Iw/ghtmYPfLaLs51z

Score

N/A

Malware Config

Signatures

Files

3d718a885b9f111caff98f95f723b7e810b3fa9ae548f065703ae80b5541b735
.dll windows x86

5888e86e0db037a8202440d2d2c8d3ae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
LocalFree
WideCharToMultiByte
FreeLibrary
LoadLibraryA
GetCurrentProcess
WriteFile
FlushFileBuffers
DisconnectNamedPipe
ConnectNamedPipe
GetLastError
GetProcAddress
CreateNamedPipeA
HeapFree
HeapAlloc
GetCurrentThreadId
GetCommandLineA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapCreate
HeapDestroy
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetModuleHandleW
Sleep
ExitProcess
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetFilePointer
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
RtlUnwind
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
CreateFileA

advapi32

LookupPrivilegeValueA
AdjustTokenPrivileges
LsaOpenPolicy
LsaQueryInformationPolicy
LsaClose
OpenProcessToken

Exports

Exports

GetHash
SetAccessPriv

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5888e86e0db037a8202440d2d2c8d3ae

Headers

File Characteristics

Imports

kernel32

advapi32

Exports

Exports

Sections

.text Size: 42KB - Virtual size: 41KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 14KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 42KB - Virtual size: 41KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 14KB

.reloc
Size: 4KB - Virtual size: 3KB