3e96da9115d6ab555b6d62d66c33e1f146afa869934b24362d54b54d5b3a7d34

General

Target

3e96da9115d6ab555b6d62d66c33e1f146afa869934b24362d54b54d5b3a7d34
Size

93KB
MD5

540429765f5b05c75401194d0d578c71
SHA1

a6c6364a46d408bfb58312ef4a848f45592e00cd
SHA256

3e96da9115d6ab555b6d62d66c33e1f146afa869934b24362d54b54d5b3a7d34
SHA512

d2d33e68d4d446b909abb99895c3be39bb698e1235a8091420e01f6c68ae109125aeef6cee57dc4eddb6f9f6b1579d9b470b4e6690f59524b1f3d6d77f2c29bc
SSDEEP

1536:68F8vBol1ljwAUenU6h7IF8fd12rZM7Yv4yQXQH30uGU+eZeFvj0y8N:68KvWbUeU6e0/9hgX0PMeFG

Score

N/A

Malware Config

Signatures

Files

3e96da9115d6ab555b6d62d66c33e1f146afa869934b24362d54b54d5b3a7d34
.dll windows x86

b0b3bc565803a66d599a385ea3167976

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetVersion
ExitProcess
VirtualAlloc
HeapAlloc
LoadLibraryA
WriteFile
WideCharToMultiByte
HeapFree
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetOEMCP
GetCPInfo
GetModuleFileNameA
GetACP
GetStdHandle
GetFileType
GetStartupInfoA
VirtualFree
HeapCreate
GetCommandLineA
GetProcAddress
lstrcpyA
SetHandleCount
TerminateProcess
GetCurrentProcess
HeapDestroy

ltkrn13n

ord163
ord108
ord192
ord174
ord124
ord137
ord151
ord179
ord112
ord100
ord134
ord101
ord189
ord141
ord125
ord283
ord282
ord129
ord190
ord188
ord191

Exports

Exports

DllMain
fltDeletePage
fltFreeData
fltGetStamp
fltInfo
fltLoad
fltSave

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 838B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0b3bc565803a66d599a385ea3167976

Headers

File Characteristics

Imports

kernel32

ltkrn13n

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 28KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 3KB

.idata Size: 57KB - Virtual size: 56KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 838B

.text
Size: 28KB - Virtual size: 28KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 3KB

.idata
Size: 57KB - Virtual size: 56KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 838B