b84305bd714616f344951846883af4d4c49c5fd8cad1b94cffafd741546a8b6c

Sharing

Copy URL Twitter E-mail

General

Target

b84305bd714616f344951846883af4d4c49c5fd8cad1b94cffafd741546a8b6c
Size

118KB
MD5

c3d66d783ce99d350a0ca9142fec86c8
SHA1

bbb05b866f25835b342c9ff032dd3eec9480dc2f
SHA256

b84305bd714616f344951846883af4d4c49c5fd8cad1b94cffafd741546a8b6c
SHA512

820e740b2ecf86604fb91540946e9df3419283138aeb2fcadc67f849f6c20848e9924c29ef1716f852954797bdaf69fb9c1ea5cd57f19ce36675ec1d2166b6e8
SSDEEP

1536:HhWGr+snWLBeu18chXceoDxB4ZiBwBupRw06bYxz6yBP56OoxvU7ltLfn:BWGr+snf21sbDxbfPFIA20tLv

Score

N/A

Malware Config

Signatures

Files

b84305bd714616f344951846883af4d4c49c5fd8cad1b94cffafd741546a8b6c
.dll windows x86

bbc0c6c9bdbe0f53007b9e9c7da8ff47

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
CreateFileA
LeaveCriticalSection
GetSystemTime
SystemTimeToFileTime
ReadFile
CloseHandle
GetCurrentProcess
GetTickCount
WriteFile
FreeLibrary
GetModuleHandleA
GetModuleFileNameA
MoveFileExA
ExitThread
GetCurrentProcessId
GetLastError
CreateThread
ResetEvent
WaitForSingleObject
GetExitCodeThread
SetEvent
CreateEventW
InterlockedIncrement
DebugBreak
MultiByteToWideChar
GetProcAddress
LoadLibraryA
GetVersionExW
ExpandEnvironmentStringsA
GetSystemDirectoryA
ReleaseSemaphore
CreateSemaphoreW
GetQueuedCompletionStatus
PostQueuedCompletionStatus
GetSystemInfo
WaitForSingleObjectEx
CreateIoCompletionPort
WaitForMultipleObjectsEx
ExpandEnvironmentStringsW
HeapAlloc
HeapFree
WideCharToMultiByte
LoadLibraryW
HeapDestroy
HeapCreate
InterlockedDecrement
TlsSetValue
TlsFree
Sleep
TlsGetValue
TlsAlloc
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetFilePointer
RtlUnwind
VirtualAlloc
HeapReAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
SetLastError
HeapSize
ExitProcess
RaiseException
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
VirtualFree
QueryPerformanceCounter
GetSystemTimeAsFileTime

user32

PostQuitMessage
GetMessageW
TranslateMessage
DestroyWindow
DispatchMessageW
DefWindowProcW
RegisterClassW
CreateWindowExW
PostMessageW
IsWindow
UnregisterClassW
CharLowerA

ole32

StringFromGUID2

ws2_32

htons
WSAStartup
WSACleanup
WSAGetLastError
WSASetLastError
WSCInstallProvider
WSCWriteProviderOrder
WSCGetProviderPath
WSCDeinstallProvider
WPUCompleteOverlappedRequest
WSCEnumProtocols
inet_addr

rpcrt4

UuidCreate

psapi

GetModuleBaseNameA

Exports

Exports

GetLspGuid
InstallLspDll
WSPStartup

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bbc0c6c9bdbe0f53007b9e9c7da8ff47

Headers

File Characteristics

Imports

kernel32

user32

ole32

ws2_32

rpcrt4

psapi

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 19KB - Virtual size: 18KB

.data Size: 6KB - Virtual size: 13KB

.reloc Size: 8KB - Virtual size: 8KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 19KB - Virtual size: 18KB

.data
Size: 6KB - Virtual size: 13KB

.reloc
Size: 8KB - Virtual size: 8KB