a39f5df141dbd1d84d3459af37257ded7c1ec409e2f426669d1ca24a0207c50e

General

Target

a39f5df141dbd1d84d3459af37257ded7c1ec409e2f426669d1ca24a0207c50e
Size

400KB
MD5

ea01cdd0e8bdb691bd715c1638838f20
SHA1

05bf9668b497e17369770e526d31eeac39c17985
SHA256

a39f5df141dbd1d84d3459af37257ded7c1ec409e2f426669d1ca24a0207c50e
SHA512

033fb5ad59d3706d5d7f7146bcee58e82019059cf513a10e53142aa082e6a41648caf596f04dd983935bd9810a6fdf984e712065dc60e3060c21ab861010876c
SSDEEP

12288:6SS1aPXmthN+HGViIzYBCzr6wJU0lV1r:+1a/uuHGV1YBCzr/U0H

Score

N/A

Malware Config

Signatures

Files

a39f5df141dbd1d84d3459af37257ded7c1ec409e2f426669d1ca24a0207c50e
.dll windows x86

774121842e2118627ce1efb9da1dfd4e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteW

kernel32

CreateFileW
VirtualAlloc
GetModuleHandleW
EnterCriticalSection
WaitForSingleObject
SetUnhandledExceptionFilter
InterlockedCompareExchange
GetVersionExA
WideCharToMultiByte
GetModuleFileNameW
CloseHandle
GlobalAlloc
GetCurrentProcessId
lstrlenW
RaiseException
LoadResource
InterlockedIncrement
QueryPerformanceCounter
GetTickCount
InterlockedExchange
lstrcmpiW
UnhandledExceptionFilter
FreeLibrary
GetSystemTimeAsFileTime
GetModuleHandleA
MultiByteToWideChar
ReadFile
GetDateFormatA
LeaveCriticalSection
GetLastError
InitializeCriticalSection
DeleteCriticalSection
TerminateProcess
LocalFree
GetCurrentThreadId
InterlockedDecrement
SetEvent

ole32

CoInitialize
CoUninitialize
CoTaskMemRealloc
CoTaskMemAlloc
CoInitializeEx
CoCreateInstance

oleaut32

SysFreeString
VarUI4FromStr
SysStringLen
UnRegisterTypeLi
LoadTypeLi
SysAllocString
RegisterTypeLi

advapi32

RegOpenKeyExW
RegQueryInfoKeyW
RegCloseKey
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW

Exports

Exports

FlagsFilename
Node_AddChild
_Index
vSetOptions

Sections

.text
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

774121842e2118627ce1efb9da1dfd4e

Headers

File Characteristics

Imports

shell32

kernel32

ole32

oleaut32

advapi32

Exports

Exports

Sections

.text Size: 188KB - Virtual size: 187KB

.rdata Size: 76KB - Virtual size: 74KB

.data Size: 64KB - Virtual size: 64KB

.rsrc Size: 56KB - Virtual size: 55KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 188KB - Virtual size: 187KB

.rdata
Size: 76KB - Virtual size: 74KB

.data
Size: 64KB - Virtual size: 64KB

.rsrc
Size: 56KB - Virtual size: 55KB

.reloc
Size: 12KB - Virtual size: 11KB