e04092bb9b88b6234bd4ca98a38277f3ef62ac749b1b59278b3c742716facab3

Sharing

Copy URL Twitter E-mail

General

Target

e04092bb9b88b6234bd4ca98a38277f3ef62ac749b1b59278b3c742716facab3
Size

350KB
MD5

7e0495addda10ae333778b406969a4b8
SHA1

df83a04edfef4f23dde42ac911e78170e181d9dc
SHA256

e04092bb9b88b6234bd4ca98a38277f3ef62ac749b1b59278b3c742716facab3
SHA512

d273c8ec0635f73ba333c44d7b65ce4c55522a9966eae8fa970556e656e5fd6b3f6059dc9a3b29c62919520ab16281567e524217ada03dc48ef0e6a897b510a1
SSDEEP

6144:lxnTiwY1oVPB7UHs3BTTS+4SGTXXtmPS4tDl6AW760tREXTsCYg4lX9ULQ9ddQVf:b+XoVZoHi9SZSGTHtmTFlB0tKDsDg4l/

Score

N/A

Malware Config

Signatures

Files

e04092bb9b88b6234bd4ca98a38277f3ef62ac749b1b59278b3c742716facab3
.dll windows x86

4373a8d4a15c01a02f879544cb316f98

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

DeleteCriticalSection
GetModuleHandleA
GetProcAddress
VirtualProtect

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

gdi32

UnrealizeObject

winmm

mciSendStringA

wsock32

WSACleanup

shell32

ShellExecuteA

avicap32

capGetDriverDescriptionA

Exports

Exports

ServiceMain

Sections

CODE
Size: - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 7KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: - Virtual size: 73B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

java0
Size: - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

java1
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

java2
Size: - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

java3
Size: 325KB - Virtual size: 325KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4373a8d4a15c01a02f879544cb316f98

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

gdi32

winmm

wsock32

shell32

avicap32

Exports

Exports

Sections

CODE Size: - Virtual size: 288KB

DATA Size: - Virtual size: 29KB

BSS Size: - Virtual size: 7KB

.idata Size: - Virtual size: 7KB

.edata Size: - Virtual size: 73B

java0 Size: - Virtual size: 14KB

java1 Size: - Virtual size: 8KB

java2 Size: - Virtual size: 92KB

java3 Size: 325KB - Virtual size: 325KB

.reloc Size: 512B - Virtual size: 36B

.rsrc Size: 8KB - Virtual size: 8KB

CODE
Size: - Virtual size: 288KB

DATA
Size: - Virtual size: 29KB

BSS
Size: - Virtual size: 7KB

.idata
Size: - Virtual size: 7KB

.edata
Size: - Virtual size: 73B

java0
Size: - Virtual size: 14KB

java1
Size: - Virtual size: 8KB

java2
Size: - Virtual size: 92KB

java3
Size: 325KB - Virtual size: 325KB

.reloc
Size: 512B - Virtual size: 36B

.rsrc
Size: 8KB - Virtual size: 8KB