20765ce6868b8cc76a2e164f2f770145cdc21a0cc66d585b05528af9aed612e8

Sharing

Copy URL

Twitter E-mail

General

Target

20765ce6868b8cc76a2e164f2f770145cdc21a0cc66d585b05528af9aed612e8
Size

65KB
MD5

8c39d9038a5f1856ad2b7f1daeef6d40
SHA1

f82f4560cd89d59040fc38257722ff97f432a5ea
SHA256

20765ce6868b8cc76a2e164f2f770145cdc21a0cc66d585b05528af9aed612e8
SHA512

5c11f1057322059b30dc7c75a385a8ede0df531dc03dfc95fd831ebbad5d5565ed4db4a7eefaab75e13b929d208067fbb47070001d4b46ddb2d9d82c6da8ab0f
SSDEEP

1536:mpJ6J99x+GnXU6k/J482PhfwGV3Vbg3jLyPrvWin+:mpJ6J9T+mOJ4jZfjBVbg3PPa+

Score

N/A

Malware Config

Signatures

Files

20765ce6868b8cc76a2e164f2f770145cdc21a0cc66d585b05528af9aed612e8
.dll windows x86

b7d73071515c7f7e36a89ddb4108101a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSectionAndSpinCount
FlushViewOfFile
GetStringTypeA
GetStringTypeExA
GetFullPathNameW
CloseHandle
InterlockedDecrement
GetProcAddress
WaitForSingleObject
SetEndOfFile
TlsAlloc
DeleteFileW
HeapFree
GetEnvironmentVariableA
lstrlenA
InterlockedExchange
GetSystemTimeAsFileTime
SetHandleCount
QueryPerformanceCounter
DeleteFileA
CompareFileTime
OpenFileMappingA
SetLastError
GetCurrentThreadId
GetCPInfo
lstrlenW
HeapDestroy
CreateFileA
GetEnvironmentStrings
GetDiskFreeSpaceA
lstrcmpA
CreateFileW
InitializeCriticalSection
LocalFree
MoveFileW
TerminateProcess
CreateMutexA
HeapReAlloc
VirtualAlloc
GetStartupInfoA
TlsGetValue
GetLastError
WideCharToMultiByte
UnhandledExceptionFilter
CreateMutexW
EnterCriticalSection
GetSystemInfo
SetFilePointer
VirtualQuery
DeleteCriticalSection
InterlockedIncrement
Sleep
GetOEMCP
CreateFileMappingW
GetStdHandle
SetEvent
SetFileTime
CreateThread
MultiByteToWideChar
LeaveCriticalSection
ReleaseMutex
IsBadReadPtr
OpenFileMappingW
GetLocaleInfoA
FreeEnvironmentStringsW
GetFileSize
MoveFileA
FreeEnvironmentStringsA
FreeLibrary
GetStringTypeW
CreateFileMappingA
GetFileType
MapViewOfFile
VirtualProtect
HeapCreate
GetVersionExA
GetFullPathNameA
HeapAlloc
IsDBCSLeadByte
LocalAlloc
GetACP
GetCurrentProcessId
lstrcmpiA
LoadLibraryA
TlsFree
CreateEventA
VirtualFree
SetUnhandledExceptionFilter
GetTickCount
GetDiskFreeSpaceW
DisableThreadLibraryCalls
GetCurrentProcess
UnmapViewOfFile
LCMapStringA
GetEnvironmentStringsW
SetEnvironmentVariableA

Exports

Exports

gzapmv

Sections

.text
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 560B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7d73071515c7f7e36a89ddb4108101a

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 40KB - Virtual size: 36KB

.data Size: 20KB - Virtual size: 16KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 560B

.text
Size: 40KB - Virtual size: 36KB

.data
Size: 20KB - Virtual size: 16KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 560B