364f11bf19d61af6cf23d18e95f67efd86d9fbf50a4f687a7147af58e7fa58a9

General

Target

364f11bf19d61af6cf23d18e95f67efd86d9fbf50a4f687a7147af58e7fa58a9
Size

64KB
MD5

dbc846fe198cf8e6c545ea32ffcaedef
SHA1

646a396d42823572917a972a2e4d432e02a9fc94
SHA256

364f11bf19d61af6cf23d18e95f67efd86d9fbf50a4f687a7147af58e7fa58a9
SHA512

6cd4b994e06a9407469e837abf9a965e3714942ddd54a384fe77d4ac086f062953731e590ae993d5bce73d5859ee0a8238f7025e79ff5f587c9dd2e9bf374286
SSDEEP

768:SO4UMPf73euuSPnUKdbx1TXTOSpoIhVVGPouOXiHs8AnLiB9kt1PDPSVWgPoVIBR:H4zPySPtTXSSthuPouOXIshJgoVCFX

Score

N/A

Malware Config

Signatures

Files

364f11bf19d61af6cf23d18e95f67efd86d9fbf50a4f687a7147af58e7fa58a9
.dll windows x86

2e65e27950ea032c02c6a5e431b7a0b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringA
SetLastError
GetLastError
GetCurrentProcess
UnhandledExceptionFilter
HeapAlloc
GetTimeZoneInformation
WriteFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
SetEndOfFile
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
MultiByteToWideChar
CreateFileA
ReadFile
FlushFileBuffers
SetStdHandle
InterlockedIncrement
InterlockedDecrement
SetFilePointer
ResumeThread
CreateThread
TlsSetValue
ExitThread
CloseHandle
RtlUnwind
HeapFree
GetEnvironmentStrings
GetEnvironmentStringsW
GetSystemTime
GetLocalTime
GetCommandLineA
GetVersion
GetCurrentThreadId
TlsAlloc
TlsFree
TlsGetValue
Sleep
ExitProcess
TerminateProcess
HeapReAlloc
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
GetFileType
GetStdHandle
GetProcAddress
GetModuleHandleA
SetHandleCount
FreeEnvironmentStringsW
WideCharToMultiByte
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA

user32

PeekMessageA
DispatchMessageA
TranslateMessage

ws2_32

recv
send
ioctlsocket
WSAGetLastError
htons
inet_addr
gethostbyname
socket
connect
__WSAFDIsSet
select
closesocket

Exports

Exports

GetPluginInfo
PluginFunc

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e65e27950ea032c02c6a5e431b7a0b7

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 42KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 10KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 44KB - Virtual size: 42KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 10KB

.reloc
Size: 4KB - Virtual size: 3KB