c73b19a32c6c832797af9706a072d6794a868c978f7d906f042f934fa7c1a67d

General

Target

c73b19a32c6c832797af9706a072d6794a868c978f7d906f042f934fa7c1a67d
Size

388KB
MD5

3f048591863b57d815490067f0a58ccd
SHA1

92a033be4c537548a5275e1df0ff23a5e10f53b6
SHA256

c73b19a32c6c832797af9706a072d6794a868c978f7d906f042f934fa7c1a67d
SHA512

c513134055f955fc467d16ae28cecae82377cc11297d4dea47e01eb414dda30754dab6f02ec985fee5f878d410cccc5377a05c63e0ddd86f3619050eb8c4853f
SSDEEP

12288:CQGwDt182gih8aN5/eC5ASA4h3Dnqod5:zzKcVeGAk5

Score

N/A

Malware Config

Signatures

Files

c73b19a32c6c832797af9706a072d6794a868c978f7d906f042f934fa7c1a67d
.dll windows x86

beb25463d6c5a5a41867fad7b3b62f8a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
IsBadWritePtr
IsBadReadPtr
GetProcAddress
GetModuleHandleA
CloseHandle
ReadFile
SetFilePointer
CreateFileA
WriteFile
ExitProcess
GetLastError
lstrcmpiA
GetModuleFileNameA
FreeLibrary
LoadLibraryA
GetPrivateProfileStringA
GetLocaleInfoW
SetEndOfFile
GetOEMCP
GetACP
EnterCriticalSection
Sleep
InitializeCriticalSection
InterlockedExchange
DeleteCriticalSection
LeaveCriticalSection
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
MultiByteToWideChar
RtlUnwind
RaiseException
HeapFree
GetCommandLineA
GetVersion
HeapAlloc
HeapReAlloc
LCMapStringA
LCMapStringW
GetCPInfo
CompareStringA
CompareStringW
TerminateProcess
GetCurrentProcess
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetUnhandledExceptionFilter
FlushFileBuffers
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
SetStdHandle
IsBadCodePtr
SetEnvironmentVariableA

user32

MessageBoxA
GetAsyncKeyState

winmm

timeGetTime

Exports

Exports

CreateInterface

Sections

.text
Size: 360KB - Virtual size: 356KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

beb25463d6c5a5a41867fad7b3b62f8a

Headers

File Characteristics

Imports

kernel32

user32

winmm

Exports

Exports

Sections

.text Size: 360KB - Virtual size: 356KB

.reloc Size: 24KB - Virtual size: 20KB

.text
Size: 360KB - Virtual size: 356KB

.reloc
Size: 24KB - Virtual size: 20KB