5c8b2a891b9d568299918f3d5c0dbf16ebcf6059988a7e9a63bd44bfd21cf8fe

Sharing

Copy URL

Twitter E-mail

General

Target

5c8b2a891b9d568299918f3d5c0dbf16ebcf6059988a7e9a63bd44bfd21cf8fe
Size

44KB
MD5

4b6c3b9fbdbc60ad731906f384b1b730
SHA1

3fb3f9ae7120729a3fa93977109aa944665ac6b5
SHA256

5c8b2a891b9d568299918f3d5c0dbf16ebcf6059988a7e9a63bd44bfd21cf8fe
SHA512

5851d9e0f99b4a912f51b76ba4c8d0e731b903ef294bee623c54dd3ac78709ceab47950645eb531d0e0b8c11fbbaec55dfe26f78e3fe444f0c198b501203d6ef
SSDEEP

768:eEr5my6VnUwzsAAB7TuEzzEA2LRSatNwfhcvbttqhj5WSSo9fHXlVu:e3UwILB7TuEUPb9/uYPotHXe

Score

N/A

Malware Config

Signatures

Files

5c8b2a891b9d568299918f3d5c0dbf16ebcf6059988a7e9a63bd44bfd21cf8fe
.dll windows x86

5b501f8c15dcda2c781b7b5f171da800

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
IsValidCodePage
QueryPerformanceCounter
MultiByteToWideChar
GetDriveTypeA
TlsAlloc
GetVersion
GetCurrentThreadId
GetModuleHandleW
CloseHandle
GetProcAddress
VirtualFree
GetLastError
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
LoadLibraryA
GetUserDefaultLangID
GetModuleHandleA
HeapReAlloc
GetOEMCP
GetACP
GetCommandLineA
ExitProcess
TerminateProcess
GetCurrentProcess
TlsSetValue
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
HeapFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
GetCPInfo
RtlUnwind

user32

GetSystemMetrics
GetForegroundWindow
GetClientRect
MessageBoxA

gdi32

GetDeviceCaps

shlwapi

PathFileExistsA

ole32

CoInitialize

Exports

Exports

AsusDrvA
_ClsidOpen

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ABSS1
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ABSS2
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b501f8c15dcda2c781b7b5f171da800

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shlwapi

ole32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.ABSS1 Size: 2KB - Virtual size: 2KB

.ABSS2 Size: 11KB - Virtual size: 10KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 6KB

.tls Size: 512B - Virtual size: 4B

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.ABSS1
Size: 2KB - Virtual size: 2KB

.ABSS2
Size: 11KB - Virtual size: 10KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 6KB

.tls
Size: 512B - Virtual size: 4B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 1KB