d84d59df6857d59ce0ed36e073aa810807c86a6aa1455002b89811176c35ce7b

General

Target

d84d59df6857d59ce0ed36e073aa810807c86a6aa1455002b89811176c35ce7b
Size

104KB
MD5

64e33cfdcbce7190099023aeaea72b47
SHA1

66a8d103de76622dd7969e186e04ee4dfab3ac6a
SHA256

d84d59df6857d59ce0ed36e073aa810807c86a6aa1455002b89811176c35ce7b
SHA512

318a150ec1a6464c1bf6c25c807bc3ca7a0d0893da6e7341d583380315f6de274e2d9bfc66f62ab67ab745178d6aa88e8a0054a632a25a474a8d63f9452ffcb6
SSDEEP

1536:dyp4jX82ZmK9K0kAiiKr1ddZbrnDk/Unw3ppRvFt6D7:86cKoHiMdpDkQGRtt6D7

Score

N/A

Malware Config

Signatures

Files

d84d59df6857d59ce0ed36e073aa810807c86a6aa1455002b89811176c35ce7b
.dll windows x86

5e52cbcaa9f4292c75dd2c9453e104c3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mglobal

GetMoyeaException

kernel32

GetCurrentThreadId
SetFilePointer
InterlockedIncrement
InterlockedDecrement
WriteFile
GetCommandLineA
InitializeCriticalSection
WideCharToMultiByte
Sleep
LeaveCriticalSection
TerminateProcess
MultiByteToWideChar
InterlockedExchange
GetLastError
GetProcAddress
EnterCriticalSection
GetModuleFileNameA
DeleteCriticalSection
CloseHandle
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
HeapAlloc
HeapReAlloc
GetVersionExA
GetProcessHeap
RaiseException
RtlUnwind
GetCPInfo
LCMapStringA
LCMapStringW
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
ExitProcess
GetACP
GetOEMCP
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
LoadLibraryA
GetConsoleCP
GetConsoleMode
SetStdHandle

Exports

Exports

CreateMobileData

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e52cbcaa9f4292c75dd2c9453e104c3

Headers

File Characteristics

Imports

mglobal

kernel32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 58KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 13KB

.rsrc Size: 4KB - Virtual size: 888B

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 60KB - Virtual size: 58KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 13KB

.rsrc
Size: 4KB - Virtual size: 888B

.reloc
Size: 12KB - Virtual size: 9KB