e6d12d3a9f9a1b886550ce815fd431eecf1ef63bd6ec24ba8e53001298db80fa

General

Target

e6d12d3a9f9a1b886550ce815fd431eecf1ef63bd6ec24ba8e53001298db80fa
Size

77KB
MD5

738aab473dd8105ffa3ac04223b2caed
SHA1

2259780c682dd8dca2bb79cdcbcb2da27fbd6026
SHA256

e6d12d3a9f9a1b886550ce815fd431eecf1ef63bd6ec24ba8e53001298db80fa
SHA512

c63e596622c32c6b9347071a42b03ee33d6deb9418ddab2a4ea6f5780bff253ac392949d9e9a70496e70142bc9224558a992bebd7854ca4be1fd922d25805b9d
SSDEEP

1536:y6s3/bwjkULQc4ANAGJ68Gli7m96am+6Ubxyxr/v/NeZ/CzEWuz248:JAbwjkIQc4AN1M8LiztzyxD80uE

Score

N/A

Malware Config

Signatures

Files

e6d12d3a9f9a1b886550ce815fd431eecf1ef63bd6ec24ba8e53001298db80fa
.dll windows x86

f08ac49d185595d9234dc9bdce5299f0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetSystemTimeAsFileTime
GetFileInformationByHandle
HeapAlloc
GetTickCount
OpenProcess
QueryPerformanceCounter
ReadFile
FreeLibrary
CopyFileA
GetFileAttributesExA
FindClose
SetFilePointer
FindNextFileA
RemoveDirectoryA
GetModuleHandleW
GetLastError
DeleteFileA
GetTempPathA
UnhandledExceptionFilter
CloseHandle
GetPrivateProfileSectionA
ExpandEnvironmentStringsA
SetLastError
GetProcessHeap
GetModuleHandleA
SetFileAttributesA
LocalFree
GetFileAttributesA
SetUnhandledExceptionFilter
GetFileSize
UnmapViewOfFile
WriteFile
GetCurrentProcess
TerminateProcess
GetPrivateProfileStringA
FlushViewOfFile
LocalAlloc
GetCurrentThreadId
MapViewOfFile
SetErrorMode
SetEndOfFile
GetNumberFormatA
HeapFree
GetFullPathNameA
CreateFileMappingA
GetCurrentProcessId

user32

FindWindowA
CreatePopupMenu
GetMenu
GetMenuItemCount
InsertMenuItemA
DestroyMenu

advapi32

OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Exports

Exports

QoAdjusstTokken
QoBeginWiindowPossitioon
QoEEnndTokenn
QoGeetWinndoow

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f08ac49d185595d9234dc9bdce5299f0

Headers

File Characteristics

Imports

kernel32

user32

advapi32

version

Exports

Exports

Sections

.text Size: 39KB - Virtual size: 39KB

.data Size: 34KB - Virtual size: 34KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 39KB - Virtual size: 39KB

.data
Size: 34KB - Virtual size: 34KB

.reloc
Size: 2KB - Virtual size: 1KB