e16e198d11aa621777154044a2136d7ff84d9ea1c7723c66c0b945aa38a87393

Sharing

Copy URL Twitter E-mail

General

Target

e16e198d11aa621777154044a2136d7ff84d9ea1c7723c66c0b945aa38a87393
Size

320KB
MD5

cfd352e954c35b7aeb0b56ac837af690
SHA1

08cd1f1adf619d77182f6f5068e23b80ec742663
SHA256

e16e198d11aa621777154044a2136d7ff84d9ea1c7723c66c0b945aa38a87393
SHA512

791b6de3772d8e3ffe5441e212a704c944c119208914dbc76c29d1b35399db0aae37e0d49d003328e14e0018f354f66e1a6fc5be7f3498d1f371bf54aed49d07
SSDEEP

3072:A36nIdHp0FY+Vah+Bde7FI5N5B7JIpzgg/P68OC3VQHwNn+Y1Bvg:2h5+Vahy9h7+zgg/Piw

Score

N/A

Malware Config

Signatures

Files

e16e198d11aa621777154044a2136d7ff84d9ea1c7723c66c0b945aa38a87393
.dll windows x86

b356f28d32814661cfdf51384b65aa41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

DefDriverProc

kernel32

LocalFree
LocalAlloc
GlobalLock
GlobalAlloc
GlobalFree
GlobalUnlock
TlsGetValue
VirtualFree
SetHandleCount
HeapCreate
CompareStringW
CompareStringA
SetFilePointer
HeapReAlloc
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
FatalAppExitA
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
SetEnvironmentVariableA
GetLastError
GetCurrentThread
HeapDestroy
SetStdHandle
HeapFree
HeapAlloc
GetFileType
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
UnhandledExceptionFilter
VirtualAlloc
IsValidLocale
IsValidCodePage
GetUserDefaultLCID
GetStringTypeA
GetStringTypeW
FlushFileBuffers
LoadLibraryA
GetLocaleInfoA
GetLocaleInfoW
GetTimeZoneInformation
CloseHandle

user32

GetDC
MessageBoxA
GetDesktopWindow
LoadStringW
ReleaseDC

gdi32

GetDeviceCaps

Exports

Exports

DriverProc

Sections

.text
Size: 289KB - Virtual size: 291KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ASM_TEXT
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b356f28d32814661cfdf51384b65aa41

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 289KB - Virtual size: 291KB

ASM_TEXT Size: 10KB - Virtual size: 10KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 29KB

.idata Size: 2KB - Virtual size: 2KB

DATA Size: 512B - Virtual size: 120B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 289KB - Virtual size: 291KB

ASM_TEXT
Size: 10KB - Virtual size: 10KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 29KB

.idata
Size: 2KB - Virtual size: 2KB

DATA
Size: 512B - Virtual size: 120B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 3KB