8d0428b45046978b5fbd74995d877eafa319e063ec415a39ed1b5fec6f235d94

General

Target

8d0428b45046978b5fbd74995d877eafa319e063ec415a39ed1b5fec6f235d94
Size

35KB
MD5

60ad7a8285cac582092aa201e746f11e
SHA1

b56d77ddd0f02067f71189edbfd25e4f4b117542
SHA256

8d0428b45046978b5fbd74995d877eafa319e063ec415a39ed1b5fec6f235d94
SHA512

88bc6cc3a08652a7e7247ce9b63b1fd651e9cf1f99952ff1683005aa5b1c584c72c1e76920cb0420f2ada95b6583696c289a0765d359d1d593a166fe68ec057e
SSDEEP

768:845yMOqftR+Wqk80ex+E7POV1BjF7qmY2aj:QM1qk80ex+E7OVDjkj

Score

N/A

Malware Config

Signatures

Files

8d0428b45046978b5fbd74995d877eafa319e063ec415a39ed1b5fec6f235d94
.dll windows x86

bc1021406552157f0f0dcd01582187f1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
_amsg_exit
_initterm
_XcptFilter
memcpy
memset
srand
rand
strtok
malloc
free
strstr

kernel32

LoadResource
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
InterlockedExchange
RtlUnwind
CloseHandle
CreateDirectoryA
ReadFile
SizeofResource
Sleep
WriteFile
GetTickCount
ExitProcess
GetModuleHandleExA
SetFilePointer
FindResourceA
GetFileSize
CreateFileA
DeleteFileA
TlsFree
TlsAlloc
GetModuleFileNameA
MoveFileA
LoadLibraryA
DisableThreadLibraryCalls
GetProcAddress
lstrcatA
GetSystemDirectoryA
CreateProcessA
TlsSetValue
GetWindowsDirectoryA
FreeLibrary
MoveFileExA
TlsGetValue

user32

wsprintfA

Exports

Exports

DriverProc
auxMessage
midMessage
modMessage
mxdMessage
widMessage
wodMessage

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc1021406552157f0f0dcd01582187f1

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

user32

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 1KB

.rsrc Size: 24KB - Virtual size: 23KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 1KB

.rsrc
Size: 24KB - Virtual size: 23KB

.reloc
Size: 1KB - Virtual size: 1KB