60d86f1572fe85b08530ac8877fc604c81dc1256977d05e4cc646dba3b18fc46

Sharing

Copy URL Twitter E-mail

General

Target

60d86f1572fe85b08530ac8877fc604c81dc1256977d05e4cc646dba3b18fc46
Size

726KB
MD5

7b0d6fab4c34141d6baf13bd59ab1ee9
SHA1

06be76144403424af54bebe01b35bbc1db5ba772
SHA256

60d86f1572fe85b08530ac8877fc604c81dc1256977d05e4cc646dba3b18fc46
SHA512

296415ad0861af38d6185cc9d2d29c804832ba60ad392aa4994327c5f81e2db83bb59511c5d93c6610a997385bfd59d50009466849aa4e5e086da5b3936798f7
SSDEEP

12288:3coYFnsNvvuzprKg4yFkG/yPI2uqGMnt3pO7u7KMRY9Y0bB6j0o0s9thZ:3ja6Z

Score

N/A

Malware Config

Signatures

Files

60d86f1572fe85b08530ac8877fc604c81dc1256977d05e4cc646dba3b18fc46
.dll windows x86

68c9f793a8f5d1134be1561999b9dee6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
DisableThreadLibraryCalls
GetModuleHandleA
GetProcAddress
WideCharToMultiByte
RaiseException
GetLastError
InitializeCriticalSectionEx
DeleteCriticalSection
DecodePointer
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
VirtualAlloc
VirtualFree
ExitProcess
VirtualQuery
VirtualProtect
lstrlenA
lstrlenW
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
CreateEventW
GetModuleHandleW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
OutputDebugStringW
RtlUnwind
WriteConsoleW
InterlockedFlushSList
SetLastError
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
GetModuleHandleExW
GetModuleFileNameW
LCMapStringW
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
GetFileType
GetStringTypeW
SetStdHandle
FlushFileBuffers
WriteFile
GetConsoleCP
GetConsoleMode
SetFilePointerEx

Exports

Exports

GetArphaCrashReport
GetArphaUtils
SetWindowLocalDump

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 601KB - Virtual size: 601KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68c9f793a8f5d1134be1561999b9dee6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 87KB

.rdata Size: 29KB - Virtual size: 28KB

.data Size: 2KB - Virtual size: 5KB

.rsrc Size: 601KB - Virtual size: 601KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 88KB - Virtual size: 87KB

.rdata
Size: 29KB - Virtual size: 28KB

.data
Size: 2KB - Virtual size: 5KB

.rsrc
Size: 601KB - Virtual size: 601KB

.reloc
Size: 4KB - Virtual size: 4KB