da6204a2b5ff621fcf59e1cfce3c6cff78870f926d4966902e93a69e45c73ca5

Sharing

Copy URL Twitter E-mail

General

Target

da6204a2b5ff621fcf59e1cfce3c6cff78870f926d4966902e93a69e45c73ca5
Size

20KB
MD5

5dfa835f2ebe31a48cbc7f435a7439ca
SHA1

d99de61643396a74f57017098bfc5c1da4b99541
SHA256

da6204a2b5ff621fcf59e1cfce3c6cff78870f926d4966902e93a69e45c73ca5
SHA512

9bfd9971f7b84346fcf094b10368d08bd9543ee4c81670ba9fe178e90255997c339a7664089e53495b7e25d7fdc418033faf4c659baa964314c51a987f3ee502
SSDEEP

384:WOH3jWIdojyd2IKIg4Gt8t/ij7m+1I31UaAqZio98otQYh1gTRmuU4B1VDxzeq:WOXddht/ija+1IFMqJZKyIRml4B1VDVe

Score

N/A

Malware Config

Signatures

Files

da6204a2b5ff621fcf59e1cfce3c6cff78870f926d4966902e93a69e45c73ca5
.dll windows x86

43b384d2de4b2df34dc4dab19cc9667b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SysFreeString

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

user32

GetKeyboardType
DestroyWindow
MessageBoxA

kernel32

GetACP
Sleep
VirtualFree
VirtualAlloc
GetCurrentThreadId
VirtualQuery
GetStartupInfoA
GetCommandLineA
FreeLibrary
ExitProcess
WriteFile
UnhandledExceptionFilter
RtlUnwind
RaiseException
GetStdHandle
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
LocalFree
LocalAlloc
FreeLibrary

Exports

Exports

CreateCoding
CreateCodingOut

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 9KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 942B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43b384d2de4b2df34dc4dab19cc9667b

Headers

File Characteristics

Imports

oleaut32

advapi32

user32

kernel32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 13KB

.itext Size: 512B - Virtual size: 196B

.data Size: 2KB - Virtual size: 1KB

.bss Size: - Virtual size: 9KB

.idata Size: 1024B - Virtual size: 942B

.edata Size: 512B - Virtual size: 100B

.reloc Size: 1024B - Virtual size: 924B

.rsrc Size: 512B - Virtual size: 512B

.text
Size: 13KB - Virtual size: 13KB

.itext
Size: 512B - Virtual size: 196B

.data
Size: 2KB - Virtual size: 1KB

.bss
Size: - Virtual size: 9KB

.idata
Size: 1024B - Virtual size: 942B

.edata
Size: 512B - Virtual size: 100B

.reloc
Size: 1024B - Virtual size: 924B

.rsrc
Size: 512B - Virtual size: 512B