b026fa104a457a3f217436ae865abe83ff402e887e3ec41197bc8fd14032a496

General

Target

b026fa104a457a3f217436ae865abe83ff402e887e3ec41197bc8fd14032a496
Size

175KB
MD5

530193e71d454a7313cad2dc142c5c0a
SHA1

b4ba05c78ac44b94cb2c34177d58de394778149f
SHA256

b026fa104a457a3f217436ae865abe83ff402e887e3ec41197bc8fd14032a496
SHA512

b1148b09f186f9f14a2ffb1caafc07f5c6dd0c841f326570a5c0ef57e5011f33f6c60a2a1bbc95e29563a03f250883823b020deb362dd7ba764382cffd0efafa
SSDEEP

3072:GNw9svDCsG0sWnGMatbn28Qb5T5HT/ep4zgLRRXeZtc8PY+gU/Vt8evBYn0DDf5o:GNiohG0lLSRQb5BCp4ELRRM28PVViMWL

Score

N/A

Malware Config

Signatures

Files

b026fa104a457a3f217436ae865abe83ff402e887e3ec41197bc8fd14032a496
.dll windows x86

add5e2eb3a155418527fbc48d263d348

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegSetValueA
RegCreateKeyA
RegCloseKey

user32

LoadStringA
GetSystemMetrics
CharNextA

pncrt

atol
__dllonexit
printf
_assert
??3@YAXPAX@Z
_purecall
??2@YAPAXI@Z
memmove
sprintf
strchr
malloc
_adjust_fdiv
_putenv
free
_onexit
_initterm

kernel32

InterlockedDecrement
InterlockedIncrement
FreeLibrary
LoadLibraryA
GetProcAddress

Exports

Exports

RACloseCodec
RADecode
RAEncode
RAFlush
RAFreeDecoder
RAFreeEncoder
RAGetFlavorProperty
RAGetNumberOfFlavors
RAGetNumberOfFlavors2
RAInitDecoder
RAInitEncoder
RAOpenCodec
RAOpenCodec2
RASetFlavor
SetDLLAccessPath

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 780B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

add5e2eb3a155418527fbc48d263d348

Headers

File Characteristics

Imports

advapi32

user32

pncrt

kernel32

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 1024B - Virtual size: 780B

.text Size: 156KB - Virtual size: 156KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 1024B - Virtual size: 780B

.text
Size: 156KB - Virtual size: 156KB