90766103376b1f1a168cd760c090be0953a4146e1812b7437d30f600a3fb1897

Sharing

Copy URL Twitter E-mail

General

Target

90766103376b1f1a168cd760c090be0953a4146e1812b7437d30f600a3fb1897
Size

104KB
MD5

33afc9b8ea66603ef2fedf66f107da2f
SHA1

5e463edfd8a0ed48117ab1a978d4f20fe81b8944
SHA256

90766103376b1f1a168cd760c090be0953a4146e1812b7437d30f600a3fb1897
SHA512

ac6eea407cbadecb6aa95afa626f1bc43e6365e412f2eaf0cfcb02135dd1512128cf5ca66eafc87c2350ec2587df999ee3a09ebedd6a3a42e36e5accde404c24
SSDEEP

1536:Y+PxzsEMeI6y7nw9iXOrs7oNHVAUFuTsAwrqfATX7nE:Y+PNtMety7DmsMHACysA40Ar7n

Score

N/A

Malware Config

Signatures

Files

90766103376b1f1a168cd760c090be0953a4146e1812b7437d30f600a3fb1897
.dll windows x86

47aa1fdd2d1555e63b496dcba3474ed3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
QueryPerformanceCounter
InterlockedCompareExchange
Sleep
InterlockedExchange
InterlockedIncrement
CreateEventA
GetProcessHeap
HeapAlloc
DeviceIoControl
GetLastError
GetOverlappedResult
ResetEvent
HeapFree
CloseHandle
GetCurrentThreadId
DisableThreadLibraryCalls
IsBadWritePtr
IsBadReadPtr
SetEvent
ReleaseMutex
WaitForSingleObject
GetVersionExA
WaitForMultipleObjects
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FreeLibrary
InterlockedDecrement
lstrlenW
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCommandLineA
VirtualProtect
VirtualFree
SetLastError
VirtualAlloc

advapi32

RegEnumKeyExW
RegOpenKeyExW
RegDeleteKeyW
RegSetValueW
RegSetValueExW
RegCloseKey

ole32

CoTaskMemFree
CoUninitialize
CoFreeUnusedLibraries

rpcrt4

NdrDllGetClassObject
NdrDllUnregisterProxy

msvcr71

_XcptFilter
__dllonexit
__CppXcptFilter
_adjust_fdiv
_CxxThrowException
_wcsicmp
_except_handler3
_amsg_exit
_initterm
free
_onexit
memcpy
rand
malloc
_snprintf

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47aa1fdd2d1555e63b496dcba3474ed3

Headers

File Characteristics

Imports

kernel32

advapi32

ole32

rpcrt4

msvcr71

Sections

.text Size: 21KB - Virtual size: 20KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 35KB - Virtual size: 69KB

.sxdata Size: 512B - Virtual size: 8B

.rsrc Size: 42KB - Virtual size: 42KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 35KB - Virtual size: 69KB

.sxdata
Size: 512B - Virtual size: 8B

.rsrc
Size: 42KB - Virtual size: 42KB

.reloc
Size: 1KB - Virtual size: 1KB