54c2bcba7799c8ed5d1b5d85cbd4a2846fa521a3f19659792861153139ccca9a

Sharing

Copy URL

Twitter E-mail

General

Target

54c2bcba7799c8ed5d1b5d85cbd4a2846fa521a3f19659792861153139ccca9a
Size

75KB
MD5

cb23b0a3e810232c97d6967c7c3f3300
SHA1

45471e316fbf12a48b7dbdde604b5454788a7957
SHA256

54c2bcba7799c8ed5d1b5d85cbd4a2846fa521a3f19659792861153139ccca9a
SHA512

3d69d869f549710bf99471e8f4545d9ae2392ec44d11dc2c9c470b2d2e804b7c4d087d67af24b68f855611291b37842166a92435c77e4b718b8f81f1bc76b753
SSDEEP

1536:+4yWFUYtYPGSgaJKQQOdSFnZCMiTRpoP9Stj21mep:+jlRJg1ZCWPy21

Score

N/A

Malware Config

Signatures

Files

54c2bcba7799c8ed5d1b5d85cbd4a2846fa521a3f19659792861153139ccca9a
.dll windows x86

e311ed634ebe02aadbda5f125654dc0e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

winmm

mixerGetLineControlsW
midiOutGetDevCapsW
GetDriverModuleHandle
midiOutLongMsg
waveOutGetErrorTextW
SendDriverMessage
waveInGetDevCapsA
waveOutOpen
timeBeginPeriod
midiOutCachePatches
waveOutPause
mmioOpenW
waveOutSetVolume
timeGetTime
midiOutGetErrorTextW
midiOutGetNumDevs
midiStreamRestart

msvcrt

longjmp
_stricmp
islower
_CIsinh
iswupper
_chmod
tolower
_wfopen
rand
div
_wmakepath
towlower
_ultoa
wcstombs
localtime
_CIsqrt
_CIlog
_fullpath
__argv
fmod
vsprintf
exit
exp
fclose
isleadbyte
_ltoa
strlen
_open_osfhandle
strcat
wcscmp
_wcslwr
__p__fmode
puts
_filelengthi64
_wsopen
_ui64tow
wcsspn
fgetws
_wfindfirst
__mb_cur_max
strerror
_wtoi
_chdir
_findnext
__wargv
ceil
__CxxLongjmpUnwind
_mbstok
_strupr
vprintf
_timezone
_makepath

advapi32

GetSidIdentifierAuthority
DeleteService
GetServiceDisplayNameW
RegQueryInfoKeyW
EnumServicesStatusExA
MapGenericMask
GetSidSubAuthorityCount
RegSetKeySecurity
AccessCheckAndAuditAlarmW
RegSaveKeyA
RegFlushKey
RegDeleteKeyA
GetCurrentHwProfileW
RegCreateKeyA
SystemFunction041
DeregisterEventSource
LsaOpenTrustedDomain
RevertToSelf
RegQueryValueExW
RegQueryValueExA
RegConnectRegistryW

crypt32

CryptDecodeMessage

ole32

WriteClassStm
CoUninitialize
ProgIDFromCLSID
StgCreateDocfileOnILockBytes
PropVariantClear
OleFlushClipboard
CoGetInterfaceAndReleaseStream
HICON_UserMarshal
RevokeDragDrop
CoDisconnectObject
CoCreateGuid
CoCreateInstanceEx
RegisterDragDrop
CreateBindCtx

rtutils

MprSetupProtocolEnum
RouterLogEventExW
RouterLogEventExA
RouterLogEventDataA
TraceVprintfExA
TracePrintfExA
TraceDumpExA
RouterLogDeregisterW
RouterLogEventA
LogEventA
RouterLogDeregisterA
LogErrorA
TraceRegisterExW
TraceDeregisterA
TracePutsExA
LogEventW
TracePrintfExW
TraceDeregisterW

kernel32

SetVolumeLabelA
WriteTapemark
DeleteTimerQueue
lstrcmpiA
CopyFileA
GetDateFormatA
GetStartupInfoA
GlobalUnlock
SetCurrentDirectoryA
LockFileEx
VirtualAlloc
GetPrivateProfileIntW
CloseProfileUserMapping
SetNamedPipeHandleState
CreateTapePartition
ExpandEnvironmentStringsA
GetLastError
FlushViewOfFile
DeleteFiber

Sections

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 30KB - Virtual size: 215KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 14KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 24KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e311ed634ebe02aadbda5f125654dc0e

Headers

DLL Characteristics

File Characteristics

Imports

winmm

msvcrt

advapi32

crypt32

ole32

rtutils

kernel32

Sections

.data Size: 2KB - Virtual size: 1KB

.rdata Size: 2KB - Virtual size: 1KB

.text Size: 30KB - Virtual size: 215KB

.edata Size: 14KB - Virtual size: 84KB

BSS Size: 24KB - Virtual size: 138KB

.rsrc Size: 1024B - Virtual size: 608B

.reloc Size: 1024B - Virtual size: 324B

.data
Size: 2KB - Virtual size: 1KB

.rdata
Size: 2KB - Virtual size: 1KB

.text
Size: 30KB - Virtual size: 215KB

.edata
Size: 14KB - Virtual size: 84KB

BSS
Size: 24KB - Virtual size: 138KB

.rsrc
Size: 1024B - Virtual size: 608B

.reloc
Size: 1024B - Virtual size: 324B