d456fc98f4eb6bd505de138e49d2fc03aeeedc6ea86a365f0b2e294e7e786574

General

Target

d456fc98f4eb6bd505de138e49d2fc03aeeedc6ea86a365f0b2e294e7e786574
Size

15KB
MD5

ed3b080ca4ed169c3a29d9dc45914be0
SHA1

dc159f15292d62717f384bb29b0d6b37abb2f5aa
SHA256

d456fc98f4eb6bd505de138e49d2fc03aeeedc6ea86a365f0b2e294e7e786574
SHA512

ff6551933cb22225e34f7d9b63b20a9bc6ac3a27a8964aa38e3b9cbd98c09c86d09297de567eef815e076b3e22abf8dd503f945a09d041f288653acd576a0661
SSDEEP

192:V+4w+aaWCjypeoqYoQJhN36DqHAr9ex1KCBArx9asSCSgP0upIjQImgc2scWmPWJ:NwMypaf8jnKCB6xzXXBkSCscWmPWL

Score

N/A

Malware Config

Signatures

Files

d456fc98f4eb6bd505de138e49d2fc03aeeedc6ea86a365f0b2e294e7e786574
.dll windows x86

ed826355105d467dc5acbd618ff86833

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
WriteFile
CreateFileA
ReadFile
SetFilePointer
TerminateProcess
CloseHandle
FindNextFileA
FindFirstFileA
CreateProcessA
GetTickCount
Sleep
lstrcmpA
ReleaseMutex
lstrcatA
CreateMutexA
GetSystemDirectoryA
FindClose
SetErrorMode
GetLogicalDrives
GetDriveTypeA
GetDiskFreeSpaceA
GetVolumeInformationA
GetFileAttributesA
DeleteFileA
WaitForSingleObject
GetEnvironmentVariableA
GetComputerNameA
lstrlenA
GetVersionExA
GetUserDefaultLangID
GlobalMemoryStatus
CreatePipe
PeekNamedPipe
CreateThread

gdi32

CreateDCA
GetDeviceCaps
CreateCompatibleDC
CreateDIBSection
SelectObject
BitBlt
GetDIBits
DeleteObject
DeleteDC

advapi32

RegCreateKeyExA
RegQueryValueExA
RegCloseKey
GetUserNameA

dnsapi

DnsRecordListFree
DnsQuery_A

ws2_32

setsockopt
shutdown
select
inet_addr
recv
send
connect
closesocket
socket
WSACleanup
WSAStartup

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ed826355105d467dc5acbd618ff86833

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

dnsapi

ws2_32

iphlpapi

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 1.1MB

.rsrc Size: 1024B - Virtual size: 968B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 1.1MB

.rsrc
Size: 1024B - Virtual size: 968B

.reloc
Size: 4KB - Virtual size: 3KB