cdb73a1f9ebd14b2f1bd67b007b1b2c8840b946659ce7f08abff6e557450442a

Sharing

Copy URL Twitter E-mail

General

Target

cdb73a1f9ebd14b2f1bd67b007b1b2c8840b946659ce7f08abff6e557450442a
Size

300KB
MD5

29f44f23a4d87a1a2a25e144be277166
SHA1

3823b460bbc67e1e3a7db56b74a8baf42dd36804
SHA256

cdb73a1f9ebd14b2f1bd67b007b1b2c8840b946659ce7f08abff6e557450442a
SHA512

173f17d4b6c415dce0cdf0b146fa8be7f54a07cdbb2b93d419cb0a37634015bc6d5720025741ebac002305df0d2d91b00447aa59d9c8263bcd161c8cb32cbe07
SSDEEP

6144:xSVYAne5Bmn75cO0gCxLd10oVtET5ngFKaINDJvE2KbHTZ:0VVQatTQMqt6gFEJvEXTt

Score

N/A

Malware Config

Signatures

Files

cdb73a1f9ebd14b2f1bd67b007b1b2c8840b946659ce7f08abff6e557450442a
.dll windows x86

4a216bdabb2d608347fa4e15a97541bb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
GetLastError
SetLastError
WideCharToMultiByte
GetWindowsDirectoryA
Sleep
CloseHandle
CreateProcessA
GetCurrentThreadId
GetPrivateProfileStringA
GetFileAttributesA
GetFullPathNameA
GetUserDefaultLangID
FindClose
FindNextFileA
FindFirstFileA
GetCurrentDirectoryA
GetVersionExA
GetTickCount
GetCommandLineA
GetFileSize
CreateFileA
GetModuleFileNameA
InitializeCriticalSection
GetModuleHandleA
DeleteCriticalSection
QueryPerformanceFrequency
QueryPerformanceCounter
GetTempPathA
OutputDebugStringA
WriteFile
FreeLibrary
GetCurrentProcess
GetProcAddress
LoadLibraryA
GetSystemInfo
LocalFree
FormatMessageA
GetSystemDefaultLangID
GetDriveTypeA
CompareFileTime
GetFileTime
OpenFile
WaitForSingleObject
CreateMutexA
OpenMutexA
ReleaseMutex
CreateEventA
OpenEventA
ResetEvent
SetEvent
PulseEvent
GetEnvironmentVariableA
GetShortPathNameA
GetSystemDirectoryA
GetLocaleInfoA
TerminateProcess
HeapAlloc
HeapFree
GetStartupInfoA
MultiByteToWideChar
FlushFileBuffers
SetEnvironmentVariableA
CompareStringW
CompareStringA
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
RtlUnwind
GetVersion
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
RaiseException
HeapReAlloc
HeapSize
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEndOfFile
LocalAlloc

Exports

Exports

COINSTALLER_PROC
CoInstall
DllMain
VendorSetup

Sections

.text
Size: 128KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 32KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4a216bdabb2d608347fa4e15a97541bb

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 128KB - Virtual size: 124KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 32KB - Virtual size: 101KB

.rsrc Size: 100KB - Virtual size: 98KB

.reloc Size: 16KB - Virtual size: 14KB

.text
Size: 128KB - Virtual size: 124KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 32KB - Virtual size: 101KB

.rsrc
Size: 100KB - Virtual size: 98KB

.reloc
Size: 16KB - Virtual size: 14KB