aff0c206dac94ce535c4ab63d5608506e4aa561059bbc0b12f3b63385d147974

Sharing

Copy URL

Twitter E-mail

General

Target

aff0c206dac94ce535c4ab63d5608506e4aa561059bbc0b12f3b63385d147974
Size

448KB
MD5

f63e954c29cee63552a3a42992342ec0
SHA1

e68955eba7dc18b055deb9f68b93f88c1b3aadf7
SHA256

aff0c206dac94ce535c4ab63d5608506e4aa561059bbc0b12f3b63385d147974
SHA512

37ce47d1466a34c7efe208d6a78dd746510ac26a6308af6a85ba4aa0f1b599436066bcd85693caee75c30c4ae8fcfd1be9436348670f201129e71332d1cd7954
SSDEEP

12288:k1YW+qLHy3gXpD880VExI/UqYjUFzs6h:dW+qLS3v+xWUqYj4zs8

Score

N/A

Malware Config

Signatures

Files

aff0c206dac94ce535c4ab63d5608506e4aa561059bbc0b12f3b63385d147974
.dll windows x86

774121842e2118627ce1efb9da1dfd4e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteW

kernel32

CreateFileW
VirtualAlloc
GetModuleHandleW
EnterCriticalSection
WaitForSingleObject
SetUnhandledExceptionFilter
InterlockedCompareExchange
GetVersionExA
WideCharToMultiByte
GetModuleFileNameW
CloseHandle
GlobalAlloc
GetCurrentProcessId
lstrlenW
RaiseException
LoadResource
InterlockedIncrement
QueryPerformanceCounter
GetTickCount
InterlockedExchange
lstrcmpiW
UnhandledExceptionFilter
FreeLibrary
GetSystemTimeAsFileTime
GetModuleHandleA
MultiByteToWideChar
ReadFile
GetDateFormatA
LeaveCriticalSection
GetLastError
InitializeCriticalSection
DeleteCriticalSection
TerminateProcess
LocalFree
GetCurrentThreadId
InterlockedDecrement
SetEvent

ole32

CoInitialize
CoUninitialize
CoTaskMemRealloc
CoTaskMemAlloc
CoInitializeEx
CoCreateInstance

oleaut32

SysFreeString
VarUI4FromStr
SysStringLen
UnRegisterTypeLi
LoadTypeLi
SysAllocString
RegisterTypeLi

advapi32

RegOpenKeyExW
RegQueryInfoKeyW
RegCloseKey
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW

Exports

Exports

AsReadBuffer
Import
Int_FromSize_t
Number_AsSsize_t
ReplaceErrors
get_sBIT
set_bKGD
set_convert_mono
set_write_fn

Sections

.text
Size: 212KB - Virtual size: 209KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

774121842e2118627ce1efb9da1dfd4e

Headers

File Characteristics

Imports

shell32

kernel32

ole32

oleaut32

advapi32

Exports

Exports

Sections

.text Size: 212KB - Virtual size: 209KB

.rdata Size: 84KB - Virtual size: 81KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 68KB - Virtual size: 65KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 212KB - Virtual size: 209KB

.rdata
Size: 84KB - Virtual size: 81KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 68KB - Virtual size: 65KB

.reloc
Size: 12KB - Virtual size: 11KB