80b832e6a9ff588bf5a4779691ba13e10459bdea2bc06d1dfadc172cb980d1e3

General

Target

80b832e6a9ff588bf5a4779691ba13e10459bdea2bc06d1dfadc172cb980d1e3
Size

24KB
MD5

8ab41429d0a3b9ee7205fc977a443246
SHA1

b4ea91f58961237570f01eb43424b56831df08d4
SHA256

80b832e6a9ff588bf5a4779691ba13e10459bdea2bc06d1dfadc172cb980d1e3
SHA512

b621a453b55481416139ca3cc840a3a24688b4f6e70af9ad618d9066af91b56a063d39b30b6a00622153e80ce545faeddf58866fc545d1ff733026feb1932ac5
SSDEEP

192:RRNvhImq3rWslz0S+dHPZk3tu3o6FEcAh66rhW:RfvhWyslMdhkw4KAh6W

Score

N/A

Malware Config

Signatures

Files

80b832e6a9ff588bf5a4779691ba13e10459bdea2bc06d1dfadc172cb980d1e3
.dll windows x86

06e99a8c722ce3deff3598ebe72e3f43

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord537
ord941
ord803
ord543
ord3584
ord2818
ord800
ord2614
ord860
ord823
ord825
ord540
ord858
ord5710

msvcrt

_adjust_fdiv
_initterm
_onexit
atoi
strncpy
strstr
strchr
_except_handler3
free
malloc
strncmp
__dllonexit

kernel32

GetCurrentProcess
TerminateProcess
WideCharToMultiByte
VirtualProtect
IsBadReadPtr
GetModuleHandleA
WaitForSingleObject
VirtualAlloc
CloseHandle
ReadFile
SetFilePointer
GetFileSize
CreateFileA
FreeLibrary
GetProcAddress
LoadLibraryA
InitializeCriticalSection
VirtualFree
DeleteCriticalSection
Sleep
EnterCriticalSection
LeaveCriticalSection
CreateThread
GetModuleFileNameA
MultiByteToWideChar

user32

wsprintfA

wininet

HttpSendRequestA
InternetReadFile
InternetOpenUrlA
InternetOpenA
InternetConnectA
HttpOpenRequestA
InternetCloseHandle

Exports

Exports

KsCreateAllocator
KsCreateClock
KsCreatePin
KsCreateTopologyNode

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06e99a8c722ce3deff3598ebe72e3f43

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

wininet

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 6KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 6KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 1KB