e2a90024464e5d442edef3d7250727ef69c3c4a6db91f1e3548271cc5868e3dc

Sharing

Copy URL Twitter E-mail

General

Target

e2a90024464e5d442edef3d7250727ef69c3c4a6db91f1e3548271cc5868e3dc
Size

500KB
MD5

98037d241588d8b9bfbfa67066c91d81
SHA1

25166fe45cc295ee97152e9254dbcbd735516c1f
SHA256

e2a90024464e5d442edef3d7250727ef69c3c4a6db91f1e3548271cc5868e3dc
SHA512

98eb677c612e289b189c3fec72ee1e9787b6e839387e6b902258fb1075bd9ed925206fa114998c69e6aa5d4eae164154ee6dd2484378bf3cf7fda78c926a1716
SSDEEP

12288:Q8gDp3FBt0wW9oNH4lOZEo31GxtyBsVso/UEUju1RB:QJDp3FBt062cGW4yB8TT+ujB

Score

N/A

Malware Config

Signatures

Files

e2a90024464e5d442edef3d7250727ef69c3c4a6db91f1e3548271cc5868e3dc
.dll windows x86

51295e3f8c4ec6278b7f16085e7a8276

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

socket
ntohs
ntohl
htonl

setupapi

SetupDiDeleteDeviceInterfaceData
CM_Get_Log_Conf_Priority_Ex
SetupCancelTemporarySourceList
SetupUninstallNewlyCopiedInfs
CM_Detect_Resource_Conflict

kernel32

lstrlenA
lstrcpynA
WriteFile
WideCharToMultiByte
WaitForSingleObject
CloseHandle
CompareStringA
CreateEventA
CreateFileA
DeleteCriticalSection
EnterCriticalSection
EnumCalendarInfoA
ExitProcess
FindClose
FindFirstFileA
FormatMessageA
FreeEnvironmentStringsA
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetDiskFreeSpaceA
GetEnvironmentStringsA
GetFileAttributesA
GetFileAttributesW
GetFileSize
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetLocaleInfoA
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeExA
GetStringTypeW
GetSystemDefaultLangID
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetVersionExA
GetWriteWatch
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalMemoryStatus
GlobalReAlloc
GlobalUnlock
HeapAlloc
HeapFree
VirtualQuery
InterlockedDecrement
InterlockedIncrement
IsBadCodePtr
IsValidLocale
LCMapStringA
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LocalAlloc
LocalFileTimeToFileTime
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadFile
ResetEvent
RtlUnwind
SetEndOfFile
SetEnvironmentVariableA
SetEvent
SetFilePointer
SetFileTime
SetHandleCount
SetLastError
SetNamedPipeHandleState
SetThreadLocale
SetThreadPriority
SystemTimeToFileTime
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
InitializeCriticalSection

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
ImpersonateAnonymousToken

user32

EnumThreadWindows
GetKeyboardType
LoadStringA
wsprintfA
CharNextA
CreateIconIndirect

oleaut32

SysAllocStringLen
SysFreeString
SysReAllocStringLen
VarCmp
VarUI2FromDate
VariantChangeType
VariantClear
VariantCopy
VariantCopyInd
VariantInit
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElement
LPSAFEARRAY_Unmarshal

Exports

Exports

GetModuleDict
GetPointer
Mem_Realloc
Module_GetDict
ReInitThreads
State_Next
WriteObject
free_data
vSetTargetPathA

Sections

.text
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 320KB - Virtual size: 319KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51295e3f8c4ec6278b7f16085e7a8276

Headers

File Characteristics

Imports

wsock32

setupapi

kernel32

advapi32

user32

oleaut32

Exports

Exports

Sections

.text Size: 82KB - Virtual size: 82KB

.rdata Size: 320KB - Virtual size: 319KB

.data Size: 67KB - Virtual size: 67KB

.rsrc Size: 26KB - Virtual size: 25KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 82KB - Virtual size: 82KB

.rdata
Size: 320KB - Virtual size: 319KB

.data
Size: 67KB - Virtual size: 67KB

.rsrc
Size: 26KB - Virtual size: 25KB

.reloc
Size: 3KB - Virtual size: 3KB