84a9cfecf2a21f8cf5325d6910418cea669c9dbb1f80b1c0db510f35ab34cb3a

General

Target

84a9cfecf2a21f8cf5325d6910418cea669c9dbb1f80b1c0db510f35ab34cb3a
Size

107KB
MD5

b8c19378bf6bb6b8204c4b654394c210
SHA1

88ddd4ef2d33fb0975b01a45cb01d62aecb9f4af
SHA256

84a9cfecf2a21f8cf5325d6910418cea669c9dbb1f80b1c0db510f35ab34cb3a
SHA512

67cc1a646658231e472862fa8b2b610e9d9ad80509d5f0bc3d7656a07901dd5049e824e6ad2c405789e8138fc4ba3d3ba62b5d2d7e4ba765148c930c67381f7f
SSDEEP

1536:5YD+PP1+MeWthZ5P8Li4qdVJNMcx4bLwKXkctsKj7X9lK+fZbHjnH6AwTRHAjA:5YDusU5PlvaXlZf970RHA8

Score

N/A

Malware Config

Signatures

Files

84a9cfecf2a21f8cf5325d6910418cea669c9dbb1f80b1c0db510f35ab34cb3a
.dll windows x86

2af5a8c9f06fc2ec437a6643c4c1e64c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedCompareExchange
GetTickCount
GetFileAttributesW
CreateMutexW
LocalReAlloc
_lopen
CreateConsoleScreenBuffer
GlobalUnfix
FindNextVolumeMountPointW
SetThreadPriority
LocalShrink
GetLogicalDriveStringsA
ReadConsoleA
FoldStringA
WaitForMultipleObjectsEx
TlsGetValue
GetHandleInformation
GetPrivateProfileIntA
GetBinaryTypeA
GetTapeParameters
ResumeThread
SwitchToFiber
GetFileTime
GetCurrentProcess
SetConsoleWindowInfo
ProcessIdToSessionId
EnumSystemLanguageGroupsW
_lwrite
UnmapViewOfFile
TlsSetValue
RemoveDirectoryA
VirtualAlloc
QueueUserWorkItem
_lread
WriteProfileSectionW
IsProcessorFeaturePresent
EnumSystemCodePagesW
QueryDosDeviceA

ntdll

toupper

Exports

Exports

JinBeginAction
JinEndAction

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

adata
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 328B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2af5a8c9f06fc2ec437a6643c4c1e64c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ntdll

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 36KB - Virtual size: 35KB

adata Size: 38KB - Virtual size: 38KB

.rsrc Size: 7KB - Virtual size: 7KB

.reloc Size: 328B - Virtual size: 68KB

.text
Size: 16KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 36KB - Virtual size: 35KB

adata
Size: 38KB - Virtual size: 38KB

.rsrc
Size: 7KB - Virtual size: 7KB

.reloc
Size: 328B - Virtual size: 68KB