b5a5f41b244f9eea4c5bdb63150af314c07eea3146dd1562ed950fb111a0f0d6

Sharing

Copy URL Twitter E-mail

General

Target

b5a5f41b244f9eea4c5bdb63150af314c07eea3146dd1562ed950fb111a0f0d6
Size

677KB
MD5

9f13cbd3ef9ecc278aea21aa732e03aa
SHA1

c5ec4042843d04a818daaab3a39626bbbb8c4d08
SHA256

b5a5f41b244f9eea4c5bdb63150af314c07eea3146dd1562ed950fb111a0f0d6
SHA512

243a74af7be8957fcb1fdf6016c8ae5c94aed310cb8f6ed864a61e48c73d419aece8dba072aba76e4c61b5f52a729bf3aa40f0cf25bc5a59b5fa65c67efd5524
SSDEEP

12288:RmmnAUlcCiDRbvL9mFpaVUhfQLtPXeC6UPWyNLNpTYbYYw7NNqZi:RmLmcV1bv5mRO0UFJYvaNNqZ

Score

N/A

Malware Config

Signatures

Files

b5a5f41b244f9eea4c5bdb63150af314c07eea3146dd1562ed950fb111a0f0d6
.dll windows x86

eb8ca0c95b166d73177ffa9bb8da92be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantInit
VariantCopyInd
VariantCopy
VariantClear
VariantChangeType
VarR4FromI2
VarI1FromDate
VarCyFromUI4
VarCmp
VarBoolFromI2
SysReAllocStringLen
SysFreeString
SysAllocStringLen
SetErrorInfo
SafeArrayPutElement
SafeArrayGetUBound
SafeArrayGetLBound
LPSAFEARRAY_Unmarshal

setupapi

SetupUninstallNewlyCopiedInfs
SetupOpenLog
SetupDiDeleteDeviceInterfaceData
SetupCloseInfFile
CM_Get_Sibling

advapi32

RegCloseKey
CryptHashData
AreAllAccessesGranted
RegOpenKeyExA

kernel32

TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
SuspendThread
SetThreadLocale
SetThreadExecutionState
VirtualAlloc
SetMailslotInfo
SetLastError
SetHandleCount
SetFilePointerEx
lstrcpynA
_lopen
WriteFile
WideCharToMultiByte
WaitForSingleObjectEx
VirtualFree
VirtualQuery
VirtualQueryEx
SetProcessAffinityMask
GetTapePosition
ConnectNamedPipe
CreateEventA
CreateFileA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FindFirstFileA
FreeEnvironmentStringsA
FreeLibrary
FreeResource
FreeUserPhysicalPages
GetACP
GetCPInfo
GetCommandLineA
GetConsoleFontSize
GetConsoleScreenBufferInfo
GetCurrentConsoleFont
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetEnvironmentStringsA
GetFileAttributesA
GetFileAttributesW
GetFileSize
GetFileType
GetFullPathNameA
GetHandleInformation
GetLargestConsoleWindowSize
GetLastError
GetLocaleInfoA
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetNamedPipeInfo
GetOEMCP
GetProcAddress
GetProcessAffinityMask
GetProcessHeap
GetProcessPriorityBoost
GetStdHandle
GetStringTypeA
GetStringTypeExA
GetSystemDefaultLangID
GetSystemInfo
GetSystemTimeAsFileTime
GetTapeParameters
SetFilePointer
GetTapeStatus
GetThreadLocale
GetThreadPriority
GetThreadSelectorEntry
GetTickCount
GetVersion
GetVersionExA
GlobalAlloc
GlobalFix
GlobalFree
GlobalHandle
GlobalLock
GlobalMemoryStatus
GlobalReAlloc
Heap32ListFirst
Heap32ListNext
HeapFree
InitializeCriticalSection
InterlockedExchangeAdd
InterlockedIncrement
IsDBCSLeadByte
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadModule
LocalFileTimeToFileTime
LocalFree
LocalReAlloc
MapViewOfFile
Module32FirstW
MultiByteToWideChar
QueryPerformanceCounter
ResetEvent
RtlUnwind
SetEndOfFile
SetEnvironmentVariableA
SetEvent
WaitForSingleObject

wsock32

ord1108
ntohl
gethostname
socket

user32

wsprintfA
keybd_event
LoadStringA
EnumThreadWindows
CharNextA
EnableWindow

Exports

Exports

ASTFromFile
InPlaceOr
Mem_Malloc
New
Reversed_Type
SetBufSize
SetInterrupt
_Contains

Sections

.text
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 480KB - Virtual size: 480KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb8ca0c95b166d73177ffa9bb8da92be

Headers

File Characteristics

Imports

oleaut32

setupapi

advapi32

kernel32

wsock32

user32

Exports

Exports

Sections

.text Size: 98KB - Virtual size: 97KB

.rdata Size: 480KB - Virtual size: 480KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 22KB - Virtual size: 21KB

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 98KB - Virtual size: 97KB

.rdata
Size: 480KB - Virtual size: 480KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 22KB - Virtual size: 21KB

.reloc
Size: 6KB - Virtual size: 6KB