c30ea1780e059c921fa4f4fac28cf354d41c27f8ef9a88aebc0039e899707050

General

Target

c30ea1780e059c921fa4f4fac28cf354d41c27f8ef9a88aebc0039e899707050
Size

82KB
MD5

5217bad3cd3e6c2b96772d5e0e3316f4
SHA1

eca3e7ceb888cd6d057716dceb9f637d572b4d4f
SHA256

c30ea1780e059c921fa4f4fac28cf354d41c27f8ef9a88aebc0039e899707050
SHA512

5c2d7ba2f34f864fe7f8ecc82a581a559579cba7bc6283eed43dd8591180949122f006704f276a93ebbcebfe2905e997e3a3774481115142c436e9dc6b70f543
SSDEEP

1536:mNxsogXsiv2I8l5nPyGW4J5Emljy8LMfFuIkE6LqzKJFoTF:YxsogXzenKxorjy8LM9uIeq4oT

Score

N/A

Malware Config

Signatures

Files

c30ea1780e059c921fa4f4fac28cf354d41c27f8ef9a88aebc0039e899707050
.dll windows x86

a3b9b2ca8892b1b8595cd39b3debc77d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetCommandLineA
GetSystemTimeAsFileTime
GetLocaleInfoA
LocalAlloc
LocalFree
InterlockedExchange
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
SetFilePointerEx
CloseHandle
DuplicateHandle
GetCurrentProcess
CreateFileW
TerminateProcess
SetUnhandledExceptionFilter
InterlockedCompareExchange
Sleep
UnhandledExceptionFilter
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
WriteFile
HeapAlloc
HeapFree
RtlUnwind
GetVersion
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeW

ole32

CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
StringFromCLSID

rpcrt4

NdrDllUnregisterProxy
NdrCStdStubBuffer2_Release
NdrCStdStubBuffer_Release
NdrDllGetClassObject

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a3b9b2ca8892b1b8595cd39b3debc77d

Headers

File Characteristics

Imports

kernel32

ole32

rpcrt4

Sections

.text Size: 29KB - Virtual size: 29KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 12KB - Virtual size: 45KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 29KB - Virtual size: 29KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 12KB - Virtual size: 45KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 2KB