d71fca4e45defab4f63516a1cac0d42ab73f988c3ad4a80509ca8d1372d39f0e

Sharing

Copy URL

Twitter E-mail

General

Target

d71fca4e45defab4f63516a1cac0d42ab73f988c3ad4a80509ca8d1372d39f0e
Size

368KB
MD5

09a825ffed35c210d17bb575deb965b0
SHA1

2ec5cc6cc0153ea45e474d20a1e7770cd25815c8
SHA256

d71fca4e45defab4f63516a1cac0d42ab73f988c3ad4a80509ca8d1372d39f0e
SHA512

5658e7caab070db9d1828b8cd2f402ffa4fd9365799b5779931d4d28e3a717f78cbd894492e41ecd5f3258077246d5af233775b3ddb0de57937ba839c0dae4a5
SSDEEP

6144:mt10NKnnSu/xs1822wSECNz/Ez2tQM/bWc1MfHdU6wQzWfu1pf3Q0BIJ0jm0pUI:mT0UV/n2/y/4wlbWcqfHdURAG+bZ

Score

N/A

Malware Config

Signatures

Files

d71fca4e45defab4f63516a1cac0d42ab73f988c3ad4a80509ca8d1372d39f0e
.dll windows x86

e4fa60c10d12682d10ace502eb021fbb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
GetSystemTimeAsFileTime
GetModuleHandleA
ReadFile
GetModuleHandleW
MultiByteToWideChar
InitializeCriticalSection
UnhandledExceptionFilter
CloseHandle
VirtualAlloc
GetModuleFileNameW
lstrlenW
LocalFree
Sleep
GlobalFree
GetTickCount
GetDateFormatA
QueryPerformanceCounter
FreeLibrary
CreateMutexW
CreateFileW
TerminateProcess
LoadResource
GetLastError
SetUnhandledExceptionFilter
WaitForSingleObject
GetCurrentProcessId
DeviceIoControl
GetCurrentThreadId
GlobalAlloc
LocalAlloc
WideCharToMultiByte
EnterCriticalSection
SetEvent
GetVersionExA
InterlockedDecrement
InterlockedExchange
LeaveCriticalSection
InterlockedCompareExchange
RaiseException
InterlockedIncrement
lstrcmpiW

shell32

ShellExecuteW

ole32

CoInitializeEx
CoTaskMemAlloc
CoCreateInstance
CoUninitialize
CoTaskMemRealloc
CoInitialize

oleaut32

SysAllocString
LoadTypeLi
SysStringLen
UnRegisterTypeLi
RegisterTypeLi
SysFreeString
VarUI4FromStr

advapi32

RegSetValueExW
CryptGetKeyParam
RegOpenKeyExW
RegCloseKey
RegCreateKeyExW
RegEnumKeyExW
RegQueryValueExW
RegQueryInfoKeyW

Exports

Exports

GenericSetAttr
List_Type
get_pixels_per_meter
get_unknown_chunks

Sections

.text
Size: 184KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4fa60c10d12682d10ace502eb021fbb

Headers

File Characteristics

Imports

kernel32

shell32

ole32

oleaut32

advapi32

Exports

Exports

Sections

.text Size: 184KB - Virtual size: 180KB

.rdata Size: 64KB - Virtual size: 62KB

.data Size: 52KB - Virtual size: 52KB

.rsrc Size: 56KB - Virtual size: 55KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 184KB - Virtual size: 180KB

.rdata
Size: 64KB - Virtual size: 62KB

.data
Size: 52KB - Virtual size: 52KB

.rsrc
Size: 56KB - Virtual size: 55KB

.reloc
Size: 8KB - Virtual size: 7KB