f7e6fb7f23ac191ccae310deaea112d03a17d507755d3e041d4213c02ad7be9d

Sharing

Copy URL Twitter E-mail

General

Target

f7e6fb7f23ac191ccae310deaea112d03a17d507755d3e041d4213c02ad7be9d
Size

1.1MB
MD5

42edf51c86e726f00379ccbdad2bc796
SHA1

c4644162b5e28f8acb1eb5223a8e4c1b6cf9c471
SHA256

f7e6fb7f23ac191ccae310deaea112d03a17d507755d3e041d4213c02ad7be9d
SHA512

95291c5b213c62b677665032dca59b08f6bc2ca2951189d08955de337df2e4f3df0117f530b943528a5f2941bbbe1d6d49f54af0aee7916c535b9ece582738f4
SSDEEP

24576:7v7DhQElqAO8HrnbLxwxrZL3W+Gr1G8DiGXzIXR3LsBRfNpMFO3T:7zD39O8HrnBwFUDi0IXRMRfN+FO3T

Score

N/A

Malware Config

Signatures

Files

f7e6fb7f23ac191ccae310deaea112d03a17d507755d3e041d4213c02ad7be9d
.dll windows x86

fdfc27674603cc16ced1fb097b8d5970

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetLastError
WideCharToMultiByte
MultiByteToWideChar
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
WaitForMultipleObjects
VirtualFree
GetProcAddress
VirtualAlloc
GetModuleHandleA
WaitForSingleObject
SetEvent
InitializeCriticalSection
CreateEventA
CreateSemaphoreA
ReleaseSemaphore
ResetEvent
CloseHandle
LocalFileTimeToFileTime
FileTimeToLocalFileTime
CompareFileTime
SetLastError
SetFileAttributesA
DeleteFileA
GetTempPathA
GetTempFileNameA
CreateFileA
ReadFile
WriteFile
GetSystemInfo
DosDateTimeToFileTime
FileTimeToDosDateTime
GetSystemTime
SystemTimeToFileTime
GetStringTypeW
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
HeapReAlloc
LoadLibraryW
HeapAlloc
HeapFree
EncodePointer
DecodePointer
ExitThread
CreateThread
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetModuleHandleW
ExitProcess
GetStdHandle
GetModuleFileNameW
HeapCreate
HeapDestroy
Sleep
HeapSize
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
InterlockedDecrement
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
RtlUnwind
RaiseException

user32

CharNextA
CharLowerW
CharUpperW
CharLowerA
CharUpperA
CharPrevExA

oleaut32

VariantCopy
SysFreeString
SysAllocString
VariantClear
SysAllocStringByteLen

Exports

Exports

CreateObject
GetHandlerProperty
GetHandlerProperty2
GetMethodProperty
GetNumberOfFormats
GetNumberOfMethods
SetLargePageMode

Sections

.text
Size: 896KB - Virtual size: 895KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fdfc27674603cc16ced1fb097b8d5970

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

oleaut32

Exports

Exports

Sections

.text Size: 896KB - Virtual size: 895KB

.rdata Size: 118KB - Virtual size: 118KB

.data Size: 30KB - Virtual size: 55KB

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 57KB - Virtual size: 56KB

.text
Size: 896KB - Virtual size: 895KB

.rdata
Size: 118KB - Virtual size: 118KB

.data
Size: 30KB - Virtual size: 55KB

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 57KB - Virtual size: 56KB