0fa0711d0f8c90b5f2aab38681977074905fd967d7857e5b02be0e6334360042

General

Target

0fa0711d0f8c90b5f2aab38681977074905fd967d7857e5b02be0e6334360042
Size

115KB
MD5

280092290910d3c1278c75e6f8fea3b0
SHA1

1117c7b2a7daab01aff22ffa9b01691409f9d4f1
SHA256

0fa0711d0f8c90b5f2aab38681977074905fd967d7857e5b02be0e6334360042
SHA512

5d442eaf4d69eb04438d6b1382cf1e26f9e3b7883c14c05b578a78d79a53955a053d8faa4524e2da670466ad2633bc61d1387e904eb6bae9dad649f78b366ceb
SSDEEP

3072:kjdM0p+WA39lD0uArty4WGdnbAhH2qUrvSUzqqEHtAl:6+b9muARLuHtUbBqBg

Score

N/A

Malware Config

Signatures

Files

0fa0711d0f8c90b5f2aab38681977074905fd967d7857e5b02be0e6334360042
.dll windows x86

f669997b565a108cf3efc0d560ec61f1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedCompareExchange
GetTickCount
GetModuleHandleA
GetLastError
SetComputerNameW
SetUnhandledExceptionFilter
GetSystemDirectoryW
GetCurrentProcessId
SetFilePointerEx
LockResource
GetVolumePathNameA
ReadFileEx
GetShortPathNameA
CreateWaitableTimerW
GlobalGetAtomNameW
PostQueuedCompletionStatus
FileTimeToSystemTime
VirtualAlloc
LoadLibraryExW
WaitNamedPipeA
VirtualFreeEx
VirtualQuery
SetThreadExecutionState
GetNamedPipeHandleStateW
_llseek
UnlockFile
SetCriticalSectionSpinCount
Beep
TlsSetValue
HeapSize
lstrcpynA
GetStdHandle
GetTimeFormatA
EnterCriticalSection
DeleteFiber
SizeofResource
FindFirstVolumeA
ReadFile
GetProcAddress
WaitForSingleObject
lstrcpyW
UnmapViewOfFile
IsValidLanguageGroup
SetLocaleInfoW
ChangeTimerQueueTimer
GetDiskFreeSpaceExA
GetPriorityClass
GetVersionExA
OpenMutexW

user32

GetAltTabInfoW

msvcrt

wprintf
srand

Exports

Exports

RidFindDesktop
RidRemoveDesktop

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 388B - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f669997b565a108cf3efc0d560ec61f1

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

msvcrt

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 17KB

.data Size: 91KB - Virtual size: 91KB

.rsrc Size: 5KB - Virtual size: 8KB

.reloc Size: 388B - Virtual size: 80KB

.text
Size: 18KB - Virtual size: 17KB

.data
Size: 91KB - Virtual size: 91KB

.rsrc
Size: 5KB - Virtual size: 8KB

.reloc
Size: 388B - Virtual size: 80KB