12cfb6adc97dc0eaf24b1db54d5124731e64e4d8e02afa9d905fcf5781452033

General

Target

12cfb6adc97dc0eaf24b1db54d5124731e64e4d8e02afa9d905fcf5781452033
Size

27KB
MD5

d67f17cc04b6d35650520b9c7d7f3060
SHA1

0680110d0fa2088c1bdf6d98e54f9c92289e1705
SHA256

12cfb6adc97dc0eaf24b1db54d5124731e64e4d8e02afa9d905fcf5781452033
SHA512

a176807eda17f7780afbc973a45a9693d0c2c23e8e66c2b99589a2261b18d9844df278b623eaa975388062e5678b33897af92bda91f8f9fd47aaf9e424bceed9
SSDEEP

768:Jvc56Ot9+Iy70uX37LGTRFKJUHm5KfYxne+xZY:Rc/mYuXLLGTDKJUHm50MRxu

Score

N/A

Malware Config

Signatures

Files

12cfb6adc97dc0eaf24b1db54d5124731e64e4d8e02afa9d905fcf5781452033
.dll windows x86

ec96cdf453626c3dc638c0ad302a3113

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler3
fseek
ftell
fread
atol
fopen
fwrite
fclose
strncpy
_stricmp
strncmp
strstr
_strnicmp
strrchr
vsprintf
atoi
free
malloc
sprintf

kernel32

DisableThreadLibraryCalls
SetThreadPriority
GetComputerNameA
OpenMutexA
CreateMutexA
WinExec
CopyFileA
SetFileAttributesA
MoveFileA
CreateDirectoryA
LocalFileTimeToFileTime
FileTimeToSystemTime
GetLogicalDriveStringsA
GetDriveTypeA
FindClose
CloseHandle
SetFileTime
CreateFileA
FindFirstFileA
GetSystemDirectoryA
GetProcAddress
LoadLibraryA
FreeLibrary
InitializeCriticalSection
CreateEventA
DeleteCriticalSection
GetLastError
SetEvent
LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
GetTickCount
CreateProcessA
WriteFile
ReadFile
PeekNamedPipe
WaitForMultipleObjects
Sleep
TerminateThread
SetLastError
CreateThread
DuplicateHandle
GetCurrentProcess
CreatePipe
SetCurrentDirectoryA
GetWindowsDirectoryA
lstrcmpiA
GetVersionExA
SetFilePointer
GetModuleFileNameA
ReleaseMutex
GetACP
GetDiskFreeSpaceA
GetModuleHandleA
FindNextFileA
DeleteFileA
RemoveDirectoryA
GetVolumeInformationA

advapi32

RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Exports

Exports

CleanupWinetdll
FileopAppCleanup
FileopAppInitialize
FileopAppStartWorker
StartupWinetdll

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ec96cdf453626c3dc638c0ad302a3113

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 24KB

.data Size: - Virtual size: 5KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 24KB - Virtual size: 24KB

.data
Size: - Virtual size: 5KB

.reloc
Size: 1KB - Virtual size: 1KB