1131a5c6b6c44894042914d5b3437dc0a48cb067e1dfd30e406297521b138499

General

Target

1131a5c6b6c44894042914d5b3437dc0a48cb067e1dfd30e406297521b138499
Size

80KB
MD5

90ecfc0ba8bd9de2423d3bb81fe43864
SHA1

2a27e5badca8ec0faf7c73db5789b2f14263a6fb
SHA256

1131a5c6b6c44894042914d5b3437dc0a48cb067e1dfd30e406297521b138499
SHA512

024c7a8b5eb344befc691e2b253013ab8ba2c196c69899ef46d07cd1e99ace1bdb357029407c5fa0e2858041fcb3b2874ff51cad4557b795d8930a7da24df0a5
SSDEEP

1536:Nd80BCcrMi+AgSPEzICRGhT+S4X2tBSBF+ogR1O:Nd80vXJiICRGTO+oB

Score

N/A

Malware Config

Signatures

Files

1131a5c6b6c44894042914d5b3437dc0a48cb067e1dfd30e406297521b138499
.dll windows x86

87d83937caaf1c9f4963cd0bd5bd9aac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
GetProcAddress
LoadLibraryA
FreeLibrary
lstrlenW
lstrcpyA
WideCharToMultiByte
DeleteFileA
Sleep
GetPrivateProfileStringA
SetLastError
GetLastError
GetVersionExA
GetModuleFileNameA
GetTempFileNameA
GetTempPathA
CloseHandle
CreateFileA
SetEndOfFile
GetOEMCP
GetACP
GetStringTypeW
GetStringTypeA
ReadFile
GetCPInfo
FlushFileBuffers
SetStdHandle
SetFilePointer
WriteFile
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
LCMapStringW
LCMapStringA
GetCurrentProcess
TerminateProcess
TlsFree
TlsAlloc
HeapAlloc
TlsSetValue
TlsGetValue
RtlUnwind
InterlockedDecrement
InterlockedIncrement
HeapFree
HeapReAlloc
EnterCriticalSection
LeaveCriticalSection
GetCommandLineA
GetVersion
GetModuleHandleA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
InitializeCriticalSection
DeleteCriticalSection
ExitProcess
GetCurrentThreadId

netapi32

NetUserChangePassword

mpr

WNetCancelConnection2A
WNetAddConnection2A

Exports

Exports

GetPluginInfo
PluginFunc

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87d83937caaf1c9f4963cd0bd5bd9aac

Headers

File Characteristics

Imports

kernel32

netapi32

mpr

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 44KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 16KB - Virtual size: 62KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 48KB - Virtual size: 44KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 16KB - Virtual size: 62KB

.reloc
Size: 8KB - Virtual size: 4KB