f36a8ea95799133c02cb7d2f3ad83876718d9af7b113c09b3f1e3a423bb93bcb

General

Target

f36a8ea95799133c02cb7d2f3ad83876718d9af7b113c09b3f1e3a423bb93bcb
Size

52KB
MD5

db30a819cabe55157cfdcaea289b2c30
SHA1

fc10f297ee83a0099a7541a9a544da1d1b2eec14
SHA256

f36a8ea95799133c02cb7d2f3ad83876718d9af7b113c09b3f1e3a423bb93bcb
SHA512

b0c9147b1a59f354ffe6d826871ee913da31f0c12518f2007158406268198c64f5483049d4979d8b6ef369c44e35f29f616eb673e70d54457ed1dd54d4ecdd2c
SSDEEP

768:VhQ2uvla3cblIMcuEuA9ZePFiC5EjnFKSb3IilwvbBbxPDwjbGJLAYk:Vya3c2MaT9ZyiC5K/SBcSqY

Score

N/A

Malware Config

Signatures

Files

f36a8ea95799133c02cb7d2f3ad83876718d9af7b113c09b3f1e3a423bb93bcb
.dll windows x86

b98affe9f973c295d685ba26d9ce5939

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
CloseHandle
GetLastError
LoadLibraryA
Process32Next
Process32First
CreateToolhelp32Snapshot
ExitProcess
GetVersionExA
GetFileAttributesA
Sleep
GetModuleFileNameA
TerminateThread
CreateThread
SetFilePointer
CreateFileA
ReadFile
SystemTimeToFileTime
GetCurrentDirectoryA
LocalFileTimeToFileTime
CreateDirectoryA
SetFileTime
WriteFile
GetTickCount
GetSystemDirectoryA
lstrlenA

user32

DefWindowProcA
BeginPaint
EndPaint
PostQuitMessage
SetWindowLongA
GetSystemMetrics
MoveWindow
SetTimer
ShowWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
GetMessageA
TranslateMessage
DispatchMessageA
CreateWindowExA
wsprintfA

msvcrt

_onexit
__dllonexit
strrchr
strncmp
_mbsstr
strcmp
calloc
atoi
strstr
memcmp
??3@YAXPAX@Z
_stricmp
_adjust_fdiv
_initterm
free
memcpy
realloc
malloc
sprintf
strcat
strcpy
strncpy
__CxxFrameHandler
memset
rand
srand
strlen
??2@YAPAXI@Z

ws2_32

gethostbyname
WSAStartup

userenv

LoadUserProfileA
UnloadUserProfile

shlwapi

PathAppendA

Exports

Exports

start

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b98affe9f973c295d685ba26d9ce5939

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

ws2_32

userenv

shlwapi

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 24KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 28KB - Virtual size: 24KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 1KB