b41257b4fb28f4dcfcdba321e96d913c2dbcfd47d3c3467af526bdbdeacab30b

Sharing

Copy URL Twitter E-mail

General

Target

b41257b4fb28f4dcfcdba321e96d913c2dbcfd47d3c3467af526bdbdeacab30b
Size

123KB
MD5

803aac38ee692982e43a1232bde60e6f
SHA1

915ab72057f17588ecec4a6903e3de022ca02a98
SHA256

b41257b4fb28f4dcfcdba321e96d913c2dbcfd47d3c3467af526bdbdeacab30b
SHA512

f0232f8758766999d3a3d84051c2976595f8a059dd9e2e3675ca1c7cc3f746bb0572b8d13ca990b8f633032f8cc302425a5e83734debbd191f5ca51991c6afde
SSDEEP

1536:/zTMclVGNRhfnWGJ/5CQ5RokM9BwwsBem3AXtvD7tiEs/WV+qQTeB59k8P2rre/L:r4cle3WGJZQ7kwg3AXRDpW/JeBkZH35

Score

N/A

Malware Config

Signatures

Files

b41257b4fb28f4dcfcdba321e96d913c2dbcfd47d3c3467af526bdbdeacab30b
.dll windows x86

214411f19a4601afcd0f1735d88fb61f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetCurrentThreadId
GetModuleHandleA
GetProcAddress
VirtualProtect

advapi32

RegSetValueExA

gdi32

StretchDIBits

user32

mouse_event

shell32

ShellExecuteA

avicap32

capGetDriverDescriptionA

wsock32

WSACleanup

Exports

Exports

ServiceMain

Sections

CODE
Size: - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dsrt0
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dfge
Size: - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdgh
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

214411f19a4601afcd0f1735d88fb61f

Headers

File Characteristics

Imports

kernel32

advapi32

gdi32

user32

shell32

avicap32

wsock32

Exports

Exports

Sections

CODE Size: - Virtual size: 73KB

DATA Size: - Virtual size: 14KB

BSS Size: - Virtual size: 2KB

.idata Size: - Virtual size: 4KB

.edata Size: - Virtual size: 76B

.dsrt0 Size: - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 192B

.dfge Size: - Virtual size: 37KB

.fdgh Size: 121KB - Virtual size: 121KB

.reloc Size: 512B - Virtual size: 76B

CODE
Size: - Virtual size: 73KB

DATA
Size: - Virtual size: 14KB

BSS
Size: - Virtual size: 2KB

.idata
Size: - Virtual size: 4KB

.edata
Size: - Virtual size: 76B

.dsrt0
Size: - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 192B

.dfge
Size: - Virtual size: 37KB

.fdgh
Size: 121KB - Virtual size: 121KB

.reloc
Size: 512B - Virtual size: 76B