7400d5dfbb86175aa9038cdc9727975a438a55a7d5d62f797dd74921ee2a425e

Sharing

Copy URL Twitter E-mail

General

Target

7400d5dfbb86175aa9038cdc9727975a438a55a7d5d62f797dd74921ee2a425e
Size

376KB
MD5

cc1ea231ab9822f447518916157c5430
SHA1

c15b51d2fb3849cf779506e236e6078d125a92be
SHA256

7400d5dfbb86175aa9038cdc9727975a438a55a7d5d62f797dd74921ee2a425e
SHA512

a79a267746febc731eacaebbae2be4ca41ed727d0f3c082f4a99e65a0aec089ff5a79efd08b6c2bf2518581721f50bb8938a426eda902a8724551042746ac99a
SSDEEP

6144:pEtOxyK8UqqrWAUceSjMAkYj83H37wF3yCMWyVrV0hClgO7VvcOjPUV3XZ:pqVw1WUewMAkYA3X7sLMdrhdVkS8V3X

Score

N/A

Malware Config

Signatures

Files

7400d5dfbb86175aa9038cdc9727975a438a55a7d5d62f797dd74921ee2a425e
.dll windows x86

c63320b1dc8123e52364cec7e36d747f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

PropVariantClear
CoTaskMemRealloc
CoUninitialize
CoTaskMemAlloc
CoCreateInstance
CoInitialize
CoInitializeEx
OleCreateFromFile

oleaut32

SysFreeString
UnRegisterTypeLi
RegisterTypeLi
LoadTypeLi
VarUI4FromStr
SysAllocString
SysStringLen

advapi32

RegOpenKeyExW
RegSetValueExW
RegQueryValueExW
RegCreateKeyExW
RegCloseKey
RegQueryInfoKeyW
RegCreateKeyW
RegEnumKeyExW

kernel32

LocalFree
CreateMutexW
ReadFile
GetOverlappedResult
GetModuleFileNameW
DeviceIoControl
OutputDebugStringA
InitializeCriticalSection
CreateFileW
VirtualAlloc
LocalAlloc
LeaveCriticalSection
GetModuleHandleA
GetModuleHandleW
InterlockedDecrement
SetUnhandledExceptionFilter
lstrlenW
DeleteCriticalSection
GetExitCodeThread
MultiByteToWideChar
lstrcmpiW
CreateThread
Sleep
InterlockedExchange
QueryPerformanceCounter
WideCharToMultiByte
GetCurrentThreadId
FindResourceW
LoadResource
InterlockedCompareExchange
CreateEventW
GetTickCount
CreateWaitableTimerW
WaitForSingleObject
TerminateProcess
GlobalFree
UnhandledExceptionFilter
SetEvent
CloseHandle
GlobalAlloc
ResetEvent
SetWaitableTimer
GetThreadLocale
EnterCriticalSection
GetLastError
WaitForMultipleObjects
GetVersionExA
GetDateFormatA
ReleaseMutex
InterlockedIncrement
GetSystemTimeAsFileTime
RaiseException
GetCurrentProcessId
FreeLibrary

Exports

Exports

ClearFreeList
Member2_GetOne
SetClosure
free_default

Sections

.text
Size: 176KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c63320b1dc8123e52364cec7e36d747f

Headers

File Characteristics

Imports

ole32

oleaut32

advapi32

kernel32

Exports

Exports

Sections

.text Size: 176KB - Virtual size: 174KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 60KB - Virtual size: 60KB

.rsrc Size: 60KB - Virtual size: 58KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 176KB - Virtual size: 174KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 60KB - Virtual size: 60KB

.rsrc
Size: 60KB - Virtual size: 58KB

.reloc
Size: 8KB - Virtual size: 7KB