ccfc33fabf566352b28753014e666491447e6c9d343bb9bc66dd014dc8c438d4

Sharing

Copy URL Twitter E-mail

General

Target

ccfc33fabf566352b28753014e666491447e6c9d343bb9bc66dd014dc8c438d4
Size

312KB
MD5

3fbd3f518513cb6b4f1d8dbea670f640
SHA1

2c3bcb7f751d1e68ec7ea2f14b3e0bbeb7544492
SHA256

ccfc33fabf566352b28753014e666491447e6c9d343bb9bc66dd014dc8c438d4
SHA512

45ebdd5327ba5322360cb1fbb6e23d7ebc85edeef828ec711b842a5ae5710ec7c4236479f091889db9dd8a49834c9658ab50a3c9e2e38f9c5da8064e1924ddb0
SSDEEP

6144:M1TbkydEE8yGreOsXSvDp3s4swIKlgaQhAGsvTQSv:MLEE8ySeyd3aeCaQhmv

Score

N/A

Malware Config

Signatures

Files

ccfc33fabf566352b28753014e666491447e6c9d343bb9bc66dd014dc8c438d4
.dll windows x86

a438bff5ff4294cf2b7c6e9c72b92dc2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

shlwapi

StrStrIA

kernel32

GetTickCount
CompareStringW
CompareStringA
GetLocaleInfoW
GetVersionExA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetProcAddress
GetModuleHandleA
CreateThread
Sleep
CloseHandle
TerminateThread
InitializeCriticalSection
DeleteCriticalSection
RaiseException
IsBadReadPtr
GetModuleFileNameA
Thread32Next
SuspendThread
OpenThread
GetCurrentProcessId
ResumeThread
GetThreadContext
SetEvent
GetCurrentThreadId
VirtualProtect
WaitForSingleObject
CreateEventA
CreateMutexA
OpenEventA
ResetEvent
EnterCriticalSection
LeaveCriticalSection
MapViewOfFile
GetLastError
CreateFileMappingA
UnmapViewOfFile
FlushFileBuffers
GetSystemInfo
GetTimeZoneInformation
SetStdHandle
SetConsoleCtrlHandler
LCMapStringW
LCMapStringA
ExitProcess
RtlUnwind
HeapFree
GetCommandLineA
HeapReAlloc
HeapAlloc
QueryPerformanceCounter
SetEnvironmentVariableA
GetSystemTimeAsFileTime
TlsAlloc
SetLastError
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
TerminateProcess
GetCurrentProcess
HeapSize
VirtualQuery
HeapDestroy
HeapCreate
VirtualFree
FatalAppExitA
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
LoadLibraryA
IsBadCodePtr
GetOEMCP
GetCPInfo
SetFilePointer
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
MultiByteToWideChar
GetStringTypeW

user32

UnregisterClassA
wsprintfA
CharNextA

ws2_32

inet_ntoa
ntohs

Exports

Exports

InitDll
UnInitDll

Sections

.text
Size: 152KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a438bff5ff4294cf2b7c6e9c72b92dc2

Headers

File Characteristics

Imports

winmm

shlwapi

kernel32

user32

ws2_32

Exports

Exports

Sections

.text Size: 152KB - Virtual size: 149KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 8KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 936B

.reloc Size: 8KB - Virtual size: 7KB

.text Size: 112KB - Virtual size: 112KB

.text
Size: 152KB - Virtual size: 149KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 936B

.reloc
Size: 8KB - Virtual size: 7KB

.text
Size: 112KB - Virtual size: 112KB