ccefe7bd943365b8815eb7dd5ea1d3dca4a947f90790496ce175d38685ff1fce

Sharing

Copy URL Twitter E-mail

General

Target

ccefe7bd943365b8815eb7dd5ea1d3dca4a947f90790496ce175d38685ff1fce
Size

200KB
MD5

b6580097b7aea05df5aca995aea185b5
SHA1

1f26cf560e25ebae1c39e60c60948cc10741759b
SHA256

ccefe7bd943365b8815eb7dd5ea1d3dca4a947f90790496ce175d38685ff1fce
SHA512

b7e2ea8685779643ea24adc8fbc98f352684e64b13c266e6f52040e42c8392936e02b1e335d976d17e352770df910804dd0962887e9fd5bb0e9fd99b27ef1b75
SSDEEP

3072:bmN1ZubTJ3hP6AM5cJpBN16fKkDW5omRTYClSmHo93E9MFZQP:iVubZ0AM5cJpByf8tF6mHohE9qe

Score

N/A

Malware Config

Signatures

Files

ccefe7bd943365b8815eb7dd5ea1d3dca4a947f90790496ce175d38685ff1fce
.dll windows x86

c4e3ba6f547450390f65ae37ddd2a22d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
SetEnvironmentVariableA
GetTickCount
CompareStringA
CreateToolhelp32Snapshot
Process32First
Module32First
Process32Next
GetCurrentProcess
CreateDirectoryA
lstrcmpA
FindClose
CompareStringW
GetFileAttributesExA
GetLogicalDriveStringsA
GetDriveTypeA
GetVolumeInformationA
GetDiskFreeSpaceExA
FreeLibrary
GetSystemDirectoryA
FindFirstFileA
FindNextFileA
LoadLibraryA
GetProcAddress
MultiByteToWideChar
DeleteCriticalSection
GetModuleFileNameA
GetFullPathNameA
InitializeCriticalSection
ResetEvent
GetExitCodeThread
CreateProcessA
OpenProcess
TerminateProcess
Sleep
GlobalMemoryStatus
GetComputerNameA
SetVolumeLabelA
lstrcpynA
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
InterlockedIncrement
InterlockedDecrement
SetUnhandledExceptionFilter
SetEndOfFile
SetFilePointer
GetStartupInfoA
GetStdHandle
SetHandleCount
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
FlushFileBuffers
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetModuleHandleA
HeapReAlloc
ExitProcess
TlsGetValue
lstrcatA
EnterCriticalSection
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetVersion
GetCommandLineA
WriteFile
RaiseException
CreateFileA
LeaveCriticalSection
GetLastError
lstrlenA
lstrcpyA
CreateEventA
CreateThread
CloseHandle
WaitForSingleObject
SetEvent
ExitThread
RtlUnwind
MoveFileA
DeleteFileA
HeapAlloc
HeapFree
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapSize
ReadFile
GetFileType

user32

GetMessageA
GetDC
PostMessageA
ReleaseDC
PostThreadMessageA

gdi32

GetObjectA
GetDIBits

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
GetUserNameA

shell32

SHGetDesktopFolder
SHGetPathFromIDListA
SHBindToParent
ShellExecuteA
SHGetFileInfoA
SHGetSpecialFolderLocation
SHGetMalloc

ole32

CoTaskMemFree
OleUninitialize
OleInitialize

ws2_32

ntohs
socket
bind
closesocket
inet_addr
htons
gethostbyname
inet_ntoa
ntohl
WSAStartup
connect
setsockopt
send
getsockname
select
sendto
recvfrom
WSAGetLastError
recv
htonl

wininet

InternetCloseHandle
InternetReadFile
InternetOpenUrlA
InternetOpenA

iphlpapi

GetAdaptersInfo
GetIpAddrTable

avicap32

capGetDriverDescriptionA

shlwapi

StrRetToBufA
StrRetToStrA

winmm

timeSetEvent
timeGetDevCaps
timeEndPeriod
timeKillEvent
timeBeginPeriod
timeGetTime

comctl32

ImageList_GetImageInfo
ImageList_GetBkColor
ImageList_GetIconSize
ImageList_GetImageCount

Exports

Exports

LlzdSet
LlzdStart
LlzdStop

Sections

.text
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c4e3ba6f547450390f65ae37ddd2a22d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

ws2_32

wininet

iphlpapi

avicap32

shlwapi

winmm

comctl32

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 97KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 28KB - Virtual size: 31KB

.rsrc Size: 44KB - Virtual size: 41KB

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 100KB - Virtual size: 97KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 28KB - Virtual size: 31KB

.rsrc
Size: 44KB - Virtual size: 41KB

.reloc
Size: 12KB - Virtual size: 9KB