f6aa6270adebdf1eca61cff32d2e7b21bbea12ae836253cd517e9f0370e7bc21

General

Target

f6aa6270adebdf1eca61cff32d2e7b21bbea12ae836253cd517e9f0370e7bc21
Size

18KB
MD5

fe8763f17e286cc1da543543c37b7418
SHA1

c0e45809db57e998a2767436a3503ead4f532f19
SHA256

f6aa6270adebdf1eca61cff32d2e7b21bbea12ae836253cd517e9f0370e7bc21
SHA512

8fb28341892f7b243dcf69c44f7b188516cae2376558bb080fea4a92809582acb2e04727cecdbbd2c02c09400b7474e354e4af077b04041c71f5ae46be0c92be
SSDEEP

192:tng5U5NcxoF0aDltS7rTE3CMriUrx4RlPxHZH36s2GsKTW4/8P7uotF088h7xC8X:tnmUp0E849eUgplqsSO/8zcRQ8X

Score

N/A

Malware Config

Signatures

Files

f6aa6270adebdf1eca61cff32d2e7b21bbea12ae836253cd517e9f0370e7bc21
.dll windows x86

35103242f38ffa4b996a6626f9a16a57

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetWindowsDirectoryA
VirtualProtect
VirtualQuery
CreateToolhelp32Snapshot
Process32First
lstrcmpiA
Process32Next
Thread32First
GetProcAddress
Thread32Next
CloseHandle
GetModuleHandleA
CreateThread
ExitThread
LoadLibraryA
OutputDebugStringA
Sleep

user32

CallNextHookEx
SetWindowsHookExA
TranslateMessage
DispatchMessageA
GetMessageA
MessageBoxA

ws2_32

htons
inet_addr
gethostbyname
connect
send
closesocket
socket
WSAStartup
WSACleanup

wininet

InternetGetConnectedState
InternetOpenA
HttpSendRequestA
HttpSendRequestW
InternetCloseHandle

msvcrt

_except_handler3
_local_unwind2
sprintf

winmm

timeGetTime

Exports

Exports

FURONGJIEJIE

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MaShared
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35103242f38ffa4b996a6626f9a16a57

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

wininet

msvcrt

winmm

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 13KB

Shared Size: 512B - Virtual size: 64B

MaShared Size: 512B - Virtual size: 64B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 13KB

Shared
Size: 512B - Virtual size: 64B

MaShared
Size: 512B - Virtual size: 64B

.reloc
Size: 2KB - Virtual size: 2KB