bitternDivide[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

bitternDivide.dll
Size

577KB
MD5

f1c6b86e39931551fe31c1a74208afac
SHA1

003b5a9d16b6f76bcb9e4d6b0d37100ab3c7805f
SHA256

33268d7234cf0c7443aa326bf82b53aa019b2b4ec1391543b795d59f979a932b
SHA512

4f88747c46f308b6440f0219bbf04e23d9db07e5e18e469ce3ecd28611507a9aa3407b4d1c359198854323a10a8dba7244053903f1ebfb55de4b621261e0ceac
SSDEEP

12288:tFcrdMJ+uCHZvHggIBxKhhVsbVcXCgSt2uSBHXJ280vYn:tFcryJK5YlbWyLrSBHw80vY

Score

N/A

Malware Config

Signatures

Files

bitternDivide.dll
.dll windows x86

874d9fa21c54994dccad8b792bdf753c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
CreateFileA
CloseHandle
GetLastError
GetCurrentDirectoryA
GetCurrentActCtx
FindFirstFileA
FindNextFileA
FindClose
GetModuleFileNameA
GetStdHandle
ReadFile
GetFileSize
SetEndOfFile
SetFilePointer
CallNamedPipeA
WriteConsoleW
RaiseException
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
SetLastError
GetCurrentThreadId
HeapAlloc
HeapFree
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
FreeLibrary
GetProcAddress
LoadLibraryExW
LCMapStringW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
ExitProcess
GetModuleHandleW
GetModuleHandleExW
GetProcessHeap
GetStringTypeW
MultiByteToWideChar
WideCharToMultiByte
HeapSize
HeapReAlloc
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
InitializeSListHead
InterlockedFlushSList
RtlUnwind
GetModuleFileNameW
FindFirstFileExW
FindNextFileW
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetFileType
SetStdHandle
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
CreateFileW
DecodePointer

Exports

Exports

CXfP836q6
DrawThemeIcon
GrXp40
Skj92W
WIudK398
WkGO396t

Sections

.text
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 284KB - Virtual size: 283KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 206KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

874d9fa21c54994dccad8b792bdf753c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 81KB - Virtual size: 81KB

.rdata Size: 284KB - Virtual size: 283KB

.data Size: 206KB - Virtual size: 208KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 81KB - Virtual size: 81KB

.rdata
Size: 284KB - Virtual size: 283KB

.data
Size: 206KB - Virtual size: 208KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 4KB - Virtual size: 4KB