9b3b04b48845a77a1489c157fcdd82007b057712aced33984a2916630dcdbf2b

General

Target

9b3b04b48845a77a1489c157fcdd82007b057712aced33984a2916630dcdbf2b
Size

82KB
MD5

4de3aeed6a68013b484c570ae06fb68e
SHA1

3f678c5eb0321dc4576ff411c8a0401b00f735c5
SHA256

9b3b04b48845a77a1489c157fcdd82007b057712aced33984a2916630dcdbf2b
SHA512

56efae6ecf30ced6eb47acd16c14534b427a8ee7111009e505a8db11649121b88c3aeaa0ec5d784e1dcb3ab618c040d00e049652574a291bb2641041d728311a
SSDEEP

1536:mNgETldTiI8l5DPyGW4J5Emljy8LMfFuIkE6LqzKJFoXYF:YgETP2DKxorjy8LM9uIeq4oo

Score

N/A

Malware Config

Signatures

Files

9b3b04b48845a77a1489c157fcdd82007b057712aced33984a2916630dcdbf2b
.dll windows x86

a3b9b2ca8892b1b8595cd39b3debc77d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetCommandLineA
GetSystemTimeAsFileTime
GetLocaleInfoA
LocalAlloc
LocalFree
InterlockedExchange
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
SetFilePointerEx
CloseHandle
DuplicateHandle
GetCurrentProcess
CreateFileW
TerminateProcess
SetUnhandledExceptionFilter
InterlockedCompareExchange
Sleep
UnhandledExceptionFilter
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
WriteFile
HeapAlloc
HeapFree
RtlUnwind
GetVersion
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeW

ole32

CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
StringFromCLSID

rpcrt4

NdrDllUnregisterProxy
NdrCStdStubBuffer2_Release
NdrCStdStubBuffer_Release
NdrDllGetClassObject

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a3b9b2ca8892b1b8595cd39b3debc77d

Headers

File Characteristics

Imports

kernel32

ole32

rpcrt4

Sections

.text Size: 29KB - Virtual size: 29KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 12KB - Virtual size: 45KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 29KB - Virtual size: 29KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 12KB - Virtual size: 45KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 2KB