ace0bceed7cb9f249e375943c4babfc2554f7f00a6ca5d9468ef3c590d1065e3

General

Target

ace0bceed7cb9f249e375943c4babfc2554f7f00a6ca5d9468ef3c590d1065e3
Size

181KB
MD5

a57a83d6e6fb4ad0ed7da71fe5f7bd20
SHA1

82c71568412d1c84baa3a3c2c7a929fbdf47d7a2
SHA256

ace0bceed7cb9f249e375943c4babfc2554f7f00a6ca5d9468ef3c590d1065e3
SHA512

8ea0dd2a0e55f2f0287a92aa91216e3147a91906ce26c19c7f0e6f01eebced781f06619183ecfed883c1447d82d79ce537863c380d60e92c1a109fe7b5d99612
SSDEEP

3072:zbhC7xwfgh9hyep1rhMUflm2twkgIsu9+ddnDS5DWczTtNZ5BvgpAK61:5C7xwfghjzbhMGXg7R3nDSZb3XBFK6

Score

N/A

Malware Config

Signatures

Files

ace0bceed7cb9f249e375943c4babfc2554f7f00a6ca5d9468ef3c590d1065e3
.dll windows x86

bfbde0d35c446d8580538ee4a2892631

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateProcessA
ExitProcess
ExpandEnvironmentStringsA
FindFirstFileA
GetACP
GetCommandLineA
GetDriveTypeA
GetEnvironmentVariableA
GetLocaleInfoW
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetUserDefaultLCID
GetVersionExA
HeapAlloc
HeapCreate
HeapReAlloc
LocalFree
MultiByteToWideChar
ReadProcessMemory
RtlUnwind
SearchPathA
SetLastError
SetUnhandledExceptionFilter

user32

InflateRect
DeleteMenu
RegisterClassA
SetScrollInfo
SetPropA
SetCapture
LoadImageA
wsprintfA
ReleaseDC

winmm

sndPlaySoundA
joyReleaseCapture
timeBeginPeriod

ole32

StringFromGUID2
CoCreateInstance
CoCreateGuid
CoBuildVersion

advapi32

CryptDuplicateKey
RegisterServiceCtrlHandlerExW
RegOverridePredefKey
MakeAbsoluteSD2
LookupSecurityDescriptorPartsA
LookupAccountNameA
GetSecurityInfoExA
GetLocalManagedApplications
ElfCloseEventLog
CryptEnumProviderTypesW
CryptEnumProviderTypesA
CryptDestroyHash
StartTraceW

shlwapi

StrStrW
PathRenameExtensionA
PathFindFileNameA

Exports

Exports

EnumWBSettingReset
GetExtendedDeviceInfo

Sections

.text
Size: 116KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bfbde0d35c446d8580538ee4a2892631

Headers

File Characteristics

Imports

kernel32

user32

winmm

ole32

advapi32

shlwapi

Exports

Exports

Sections

.text Size: 116KB - Virtual size: 216KB

.data Size: 60KB - Virtual size: 60KB

.rsrc Size: 2KB - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 116KB - Virtual size: 216KB

.data
Size: 60KB - Virtual size: 60KB

.rsrc
Size: 2KB - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 4KB