460d3f8de1df76f6e4ccd59816c384da7dcf390a6758fc1796f5890caf73c0d4

Sharing

Copy URL Twitter E-mail

General

Target

460d3f8de1df76f6e4ccd59816c384da7dcf390a6758fc1796f5890caf73c0d4
Size

59KB
MD5

eb67e4b84f9807eb8a23f79587e072c0
SHA1

274706e86994f0c992d2faeb5ca7c2d43ac1d0bd
SHA256

460d3f8de1df76f6e4ccd59816c384da7dcf390a6758fc1796f5890caf73c0d4
SHA512

6ce365634c0a21b0127bf494e6ce607f7094ec29645119c8b854933cbdebff1486f8e948cb6437ea36db4c83d7d4a0076bf3ed33cf774d3873c50fc87f53df42
SSDEEP

1536:bPyoHzI/Y4JBFweMRJ7/CFPP1qjCZXYaAcoR1b:bPyWI/vZwVRJ76FPP0jC54c+1b

Score

N/A

Malware Config

Signatures

Files

460d3f8de1df76f6e4ccd59816c384da7dcf390a6758fc1796f5890caf73c0d4
.dll windows x86

40343bf3dfffffec5547bb48bb0dca61

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToSystemTime
GetTimeZoneInformation
SetEndOfFile
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
CreateFileA
CompareStringW
CompareStringA
InterlockedExchange
HeapSize
RtlUnwind
InitializeCriticalSection
SetFilePointer
VirtualQuery
GetSystemInfo
VirtualProtect
VirtualAlloc
SetStdHandle
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCPInfo
UnhandledExceptionFilter
SetEnvironmentVariableW
SetEnvironmentVariableA
FlushFileBuffers
TlsGetValue
TlsSetValue
TlsFree
SetLastError
TlsAlloc
ReadFile
FileTimeToLocalFileTime
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
WideCharToMultiByte
DeleteCriticalSection
HeapFree
HeapReAlloc
HeapAlloc
GetVersionExA
CreateThread
GetCurrentThreadId
ExitThread
GetFileAttributesA
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcess
TerminateProcess
GetModuleHandleA
ExitProcess
FindClose
FindNextFileA
FindFirstFileA
GetExitCodeThread
LoadLibraryA
GetProcAddress
FreeLibrary
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
CloseHandle
GetLastError
FormatMessageA
LocalFree
QueryPerformanceFrequency
QueryPerformanceCounter
GetModuleFileNameA
GetProcessHeap
GetCurrencyFormatA
OutputDebugStringA
GetDriveTypeA
GetFullPathNameA
GetCurrentDirectoryA
WriteFile
Beep

advapi32

RegOpenKeyExA
RegEnumKeyA
RegQueryValueExA
RegCloseKey

Exports

Exports

lygtsq

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 538B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

40343bf3dfffffec5547bb48bb0dca61

Headers

File Characteristics

Imports

kernel32

advapi32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 25KB

.data Size: 20KB - Virtual size: 18KB

.rsrc Size: 4KB - Virtual size: 920B

.reloc Size: 4KB - Virtual size: 538B

.text
Size: 28KB - Virtual size: 25KB

.data
Size: 20KB - Virtual size: 18KB

.rsrc
Size: 4KB - Virtual size: 920B

.reloc
Size: 4KB - Virtual size: 538B