d99990d232e2ccefb15d2f5d634310bdb254212cee67c5ff665ba63b90bf2fd8

General

Target

d99990d232e2ccefb15d2f5d634310bdb254212cee67c5ff665ba63b90bf2fd8
Size

428KB
MD5

c78ec8391e0a0000b9365c0f015a7170
SHA1

cfc5bd676ff195190066296db3912344889fa6dc
SHA256

d99990d232e2ccefb15d2f5d634310bdb254212cee67c5ff665ba63b90bf2fd8
SHA512

b325cc0a157c4eec06def942953d44c90693cca7796d1f735fc6931902349abd8cab6dd73ab876902f58d8149e609737e891d5581025e7fe3220ad97c87ff2b4
SSDEEP

6144:sRVpWUBImG8JSIk6l8jh69ldExf0EprNrQpf66sRSiPS:shOHwRl8jQmfwpf66sRSU

Score

N/A

Malware Config

Signatures

Files

d99990d232e2ccefb15d2f5d634310bdb254212cee67c5ff665ba63b90bf2fd8
.dll windows x86

8559a2ba38fc3bb068cf586dd5e359cc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSetValueExW
RegQueryValueExW
RegQueryInfoKeyW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey

shell32

DragAcceptFiles
SHGetSpecialFolderLocation
ShellExecuteW
SHAddToRecentDocs

kernel32

SetUnhandledExceptionFilter
GetLastError
InitializeCriticalSection
GetModuleFileNameW
FreeLibrary
InterlockedExchange
GetCurrentThreadId
GetTickCount
GetVersionExA
QueryPerformanceCounter
RaiseException
WaitForSingleObject
ReadFile
SetConsoleCursorPosition
GetModuleHandleA
MultiByteToWideChar
WideCharToMultiByte
CreateFileW
TzSpecificLocalTimeToSystemTime
CloseHandle
DeleteCriticalSection
GetDateFormatA
InterlockedIncrement
LeaveCriticalSection
VirtualAlloc
UnhandledExceptionFilter
GetCurrentProcessId
LocalFree
SetEvent
EnterCriticalSection
InterlockedDecrement
GetModuleHandleW

ole32

CoCreateInstance
CoInitialize
CoUninitialize
CoInitializeEx

Exports

Exports

AsFileDescriptor
AsReadBuffer
FillInfo
GetBuiltins
Long_FromString
MemoryError
Print

Sections

.text
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8559a2ba38fc3bb068cf586dd5e359cc

Headers

File Characteristics

Imports

advapi32

shell32

kernel32

ole32

Exports

Exports

Sections

.text Size: 192KB - Virtual size: 191KB

.rdata Size: 80KB - Virtual size: 78KB

.data Size: 84KB - Virtual size: 84KB

.rsrc Size: 60KB - Virtual size: 59KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 192KB - Virtual size: 191KB

.rdata
Size: 80KB - Virtual size: 78KB

.data
Size: 84KB - Virtual size: 84KB

.rsrc
Size: 60KB - Virtual size: 59KB

.reloc
Size: 8KB - Virtual size: 7KB