b7fb88632a3be330d9c250c6bd51f348f69c0fb227ac07d88c7fcfded65805ef

General

Target

b7fb88632a3be330d9c250c6bd51f348f69c0fb227ac07d88c7fcfded65805ef
Size

156KB
MD5

fc179adbf15fe7c929fc7b1cbab4ba1d
SHA1

5d8d25faee853f1be0c143e142eb2c7db8f9f59e
SHA256

b7fb88632a3be330d9c250c6bd51f348f69c0fb227ac07d88c7fcfded65805ef
SHA512

4b91a1da18bbe7068730033cf9668c72bd57f99b9b8c7083ac089ad148b51c2525fd73b630642d5621a5736157ffbe68ba68a866947083e756254f4096d4d896
SSDEEP

3072:Sg7o3F8ccKJUitPL71H3PXp9ba2smaNiqzZ6ddLqkXy5WSjcsaxVi3:LETbtPP1H3PHWeQOLDyrcsa+3

Score

N/A

Malware Config

Signatures

Files

b7fb88632a3be330d9c250c6bd51f348f69c0fb227ac07d88c7fcfded65805ef
.dll windows x86

fd196f4c68394952c74856e0c35cf9f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetShortPathNameA
CompareStringA
lstrlenA
lstrcmpA
GetVersionExA
GetModuleFileNameA
GetProcessHeap
SetFileAttributesA
MoveFileA
GetSystemTimeAsFileTime
GetFileTime
GetTempPathA
CloseHandle
GetFileSize
LocalFree
FormatMessageA
GetLastError
CreateFileA
InterlockedExchange
Sleep
InterlockedCompareExchange
RtlUnwind
QueryPerformanceCounter
HeapFree
GetCurrentThreadId
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
MapViewOfFile
MultiByteToWideChar
SearchPathW
FindResourceW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
UnmapViewOfFile
GetVersionExW
SetLastError
LoadResource
FindResourceExW
LoadLibraryExW
FreeLibrary
CreateFileMappingW
CreateFileW
GetLocaleInfoW
GetTickCount
HeapAlloc

ole32

CoUninitialize
CoCreateInstance
CoInitialize

user32

MessageBoxA
LoadStringA

advapi32

IsValidAcl

msvcrt

wcslen
malloc
fclose
memcpy
free
wcsncmp
memset

Exports

Exports

znjw

Sections

.text
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd196f4c68394952c74856e0c35cf9f6

Headers

File Characteristics

Imports

kernel32

ole32

user32

advapi32

msvcrt

Exports

Exports

Sections

.text Size: 128KB - Virtual size: 125KB

.data Size: 20KB - Virtual size: 49KB

.reloc Size: 4KB - Virtual size: 760B

.text
Size: 128KB - Virtual size: 125KB

.data
Size: 20KB - Virtual size: 49KB

.reloc
Size: 4KB - Virtual size: 760B