a4ad92f5605d3d16fdb7a83eb5c3e9f7e5703d223bfe601ba2c972ad8d5292f0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a4ad92f5605d3d16fdb7a83eb5c3e9f7e5703d223bfe601ba2c972ad8d5292f0
Size

4KB
MD5

732e5fa8f0e1ca50d6b961072ba39fe0
SHA1

657725f91745087dbf9700e843e2fed5072193fe
SHA256

a4ad92f5605d3d16fdb7a83eb5c3e9f7e5703d223bfe601ba2c972ad8d5292f0
SHA512

9ec31d50d3863b40bff2ee3ead2222373c4fd7c3d3605f23faca13d1465bd13545c8d6b2f03d22bcfc5ef143086747c2b8183d9a7adca190cbced9d8f25f6498

Score

N/A

Malware Config

Signatures

Files

a4ad92f5605d3d16fdb7a83eb5c3e9f7e5703d223bfe601ba2c972ad8d5292f0
.dll windows x86

83e49c89f4fd1a4b05d0ca835a3725b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
InterlockedIncrement
FreeLibraryAndExitThread
VirtualFree
LocalFree
CloseHandle
InterlockedDecrement
GetVersion
GetModuleHandleA
GetProcAddress
VirtualProtect
FlushInstructionCache

Exports

Exports

ApiHookChain
CrThread
KiThread

Sections

ClientAW
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ