605ec8eb8bed4410ff42c7a9556f6a91211f8b08d7bca438d7e7539b61dda0a8

Sharing

Copy URL Twitter E-mail

General

Target

605ec8eb8bed4410ff42c7a9556f6a91211f8b08d7bca438d7e7539b61dda0a8
Size

112KB
MD5

7a5871893aa67a735e7b897aa39afbb0
SHA1

f4f1c913585d1b23e6c55268f5c68d7587db5e90
SHA256

605ec8eb8bed4410ff42c7a9556f6a91211f8b08d7bca438d7e7539b61dda0a8
SHA512

32445a169319f8a1c313bc889f907e309907ef4d5f70a6d55b6209230ff63ebdcbea9bc13e42e8b7cc5f45719b1e5f6df8f2ae32756cccec6d73c5fab7ff4453
SSDEEP

1536:xkXxJ5rj0GxbZJtmBJR8KTtuKwp7ZZiJwN3gMJUYofyAU9LQYDBo8dHKThxfXRiv:xKxLmBcFK0N3LUYofyAAXakKjXRi2

Score

N/A

Malware Config

Signatures

Files

605ec8eb8bed4410ff42c7a9556f6a91211f8b08d7bca438d7e7539b61dda0a8
.dll windows x86

c9f872e23999b586b6a1f8bf624e1955

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteKeyA
RegSetValueExW

version

VerQueryValueW
GetFileVersionInfoA

kernel32

RtlUnwind
GetStringTypeW
GetStringTypeA
GetModuleHandleA
LoadLibraryA
GetProcAddress
IsValidLocale
GetHandleInformation
GetLocalTime
LCMapStringW
GetConsoleMode
SetEndOfFile
GetSystemTimeAsFileTime
lstrlenA
IsBadReadPtr
SetLastError
MapViewOfFile
GetModuleFileNameA
GetFileTime
LoadResource
GetConsoleCP
CreateFileA
GetTempFileNameA
GetThreadLocale
Sleep
CompareStringW
SizeofResource
LoadLibraryW
CreateFileW
SetEnvironmentVariableA
lstrcpynW
VirtualAlloc
CreateMutexW
GetShortPathNameA
FormatMessageA
LocalFree
GetVersionExA
GetCurrentDirectoryA
CreateDirectoryW
GetLocaleInfoA
CopyFileA
CreateFileMappingA
FileTimeToLocalFileTime
GlobalReAlloc
CloseHandle
ExitProcess
GetSystemTime
HeapAlloc
GetCommandLineA
GetVersion
HeapDestroy
HeapCreate
VirtualFree
HeapFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
HeapReAlloc
IsBadWritePtr
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
GetLastError
GetCurrentThread
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
UnhandledExceptionFilter
GetCPInfo
GetACP
GetOEMCP
FlushFileBuffers
SetStdHandle
ReadFile
SetFilePointer
MultiByteToWideChar
LCMapStringA

Exports

Exports

iibpxrj

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c9f872e23999b586b6a1f8bf624e1955

Headers

File Characteristics

Imports

advapi32

version

kernel32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 52KB - Virtual size: 55KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 52KB - Virtual size: 55KB

.reloc
Size: 8KB - Virtual size: 4KB