c308c02919b0c5080d76213f9eb583ae1cef20960365732a4849c2e3534bf816

Sharing

Copy URL Twitter E-mail

General

Target

c308c02919b0c5080d76213f9eb583ae1cef20960365732a4849c2e3534bf816
Size

147KB
MD5

ddaaae4b068a873a411e75f029945be0
SHA1

eec41321cb0163e4eec09ae0408f0dfbadb82fae
SHA256

c308c02919b0c5080d76213f9eb583ae1cef20960365732a4849c2e3534bf816
SHA512

102737f20e0723461322eb01a95a548223b6541e26af4935fe3d0b58a6da325dcfc7696f4cceafb72a86d39fa771e5be3d2181b32ef8a2d587a286553647e23a
SSDEEP

3072:5KKQ/1jQ6JsWFscL6nu771veX5yU1X7tTpcYHfZiA8l3R9ey2U:5LQm6JsWV2oOtV3Czey2U

Score

N/A

Malware Config

Signatures

Files

c308c02919b0c5080d76213f9eb583ae1cef20960365732a4849c2e3534bf816
.dll windows x86

b7f602ed4ad1a0ff2720fbf965c66d97

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadLocale
GetPrivateProfileStringW
FileTimeToLocalFileTime
TlsFree
ConnectNamedPipe
lstrcpyW
OpenFile
GetLastError
CopyFileW
SetThreadPriority
GetThreadPriority
LoadLibraryExA
CreateFileW
SetupComm
RemoveDirectoryA
CompareStringA
RegisterWaitForSingleObject
GetNumberFormatA
LocalUnlock
LCMapStringA
CompareStringW
LeaveCriticalSection
GetFileType
PulseEvent
ReleaseMutex
LockFile
GetFullPathNameA
CloseHandle
SetSystemTime
SizeofResource
lstrcpynW
SetCommTimeouts
HeapFree
SetMailslotInfo
CreateSemaphoreA
ReleaseSemaphore
WaitForMultipleObjectsEx
SetThreadExecutionState
GetSystemTimeAdjustment
lstrcatW
AreFileApisANSI
GetSystemDirectoryA
MulDiv
GlobalHandle
FindResourceExA
GetPriorityClass
Sleep
FlushFileBuffers
CreateSemaphoreW
GetSystemTimeAsFileTime
GetModuleHandleW
GetCPInfo
IsDBCSLeadByte
CreateMailslotW
EnumSystemLocalesA
IsDBCSLeadByteEx
FindResourceA
SleepEx
VirtualProtect
GlobalCompact
GetCommState
FindFirstChangeNotificationW
lstrcpynA
CallNamedPipeW
SetCommMask
IsBadReadPtr
SetThreadLocale
EnumResourceNamesA
EnterCriticalSection
SetWaitableTimer
GlobalAlloc
IsBadStringPtrW
CreateEventW
MoveFileExW
CreateWaitableTimerW
GlobalMemoryStatus
lstrlenW
GetModuleFileNameW
WinExec
MoveFileExA
GetVersion
SearchPathW
GlobalAddAtomW
GetComputerNameExW
EnumResourceTypesA
CreateDirectoryW
GetTempPathW
GetExitCodeThread
TlsGetValue
FormatMessageA
GetSystemDefaultLangID
GetLocalTime
FindFirstFileW
OpenSemaphoreW
GetCompressedFileSizeW
FreeResource
WriteFile
FlushViewOfFile
ResumeThread
LoadLibraryExW
HeapWalk
HeapCreate
GetBinaryTypeA
FindResourceW
DeleteFileA
GetSystemDirectoryW
FreeLibrary
DeleteCriticalSection
GetVersionExW
GetThreadTimes
GlobalFree
GetACP

Exports

Exports

?AightDialog@@YGEUtext@@@Z
?GoodAimTFS@@YGEUtext@@@Z
?GoodLowmFire@@YGEUtext@@@Z
?MainPort@@YGEUtext@@@Z
?NineDialog@@YGEUtext@@@Z

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.okan
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.acan
Size: 512B - Virtual size: 267B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.push3
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7f602ed4ad1a0ff2720fbf965c66d97

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 31KB - Virtual size: 31KB

.okan Size: 16KB - Virtual size: 16KB

.acan Size: 512B - Virtual size: 267B

.data Size: 28KB - Virtual size: 28KB

.push3 Size: 12KB - Virtual size: 12KB

.rsrc Size: 55KB - Virtual size: 54KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 31KB - Virtual size: 31KB

.okan
Size: 16KB - Virtual size: 16KB

.acan
Size: 512B - Virtual size: 267B

.data
Size: 28KB - Virtual size: 28KB

.push3
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 55KB - Virtual size: 54KB

.reloc
Size: 2KB - Virtual size: 1KB