a45d6e2268fe07045a2112333509654b282112c86dfa7d1ca00c87f0f69b3b8d

Sharing

Copy URL

Twitter E-mail

General

Target

a45d6e2268fe07045a2112333509654b282112c86dfa7d1ca00c87f0f69b3b8d
Size

249KB
MD5

2969ef4708c9b6535056b9cc9340a1ba
SHA1

b5e9ad3b7f7c966771a2b392101e691d03d3dc49
SHA256

34a47f400f1bbd0a4dcda99fc87fc160362db8bbd8ec5db358012862dbf371ca
SHA512

a295e6875d93bd1e1cda41c1cc137a7474a162a5b9fbb60dc0c9265c0e3e3594e40c09c2250413c73aad95b1aa4c437a4f105517e55f4d8223d88ceb67af9afc
SSDEEP

6144:dElL+v1JK2C3J+Ig9E66Qq2elk+93zTno3pMPpUegkFNd1:UmJK2ksIFOUhz0MpVFNL

Score

N/A

Malware Config

Signatures

Files

a45d6e2268fe07045a2112333509654b282112c86dfa7d1ca00c87f0f69b3b8d
.zip
a45d6e2268fe07045a2112333509654b282112c86dfa7d1ca00c87f0f69b3b8d
.dll regsvr32 windows x86

721c6725c90961f9b5d3c798cfab56d0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
CreateFileA
GetFileInformationByHandle
CloseHandle
PeekNamedPipe
HeapCreate
HeapAlloc
HeapFree
GetProcessHeap
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
ExitProcess
VirtualAlloc
GetProcAddress
SwitchToFiber
DeleteFiber
CreateFiber
CreateFileMappingA
OpenFileMappingA
LoadLibraryA
CreateNamedPipeA
CreateActCtxA
ReleaseActCtx
ActivateActCtx
DeactivateActCtx
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetModuleHandleW
GetCurrentProcess
TerminateProcess
InterlockedFlushSList
RtlUnwind
GetLastError
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
GetModuleHandleExW
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
LCMapStringW
GetFileType
GetACP
GetStringTypeW
FindClose
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlushFileBuffers
WriteFile
GetConsoleCP
GetConsoleMode
SetStdHandle
HeapSize
HeapReAlloc
SetFilePointerEx
WriteConsoleW
ReadFile
ReadConsoleW
CreateFileW
DecodePointer
RaiseException

Exports

Exports

DllRegisterServer
GawOOW
LhS7tIB
VZr071qt

Sections

.text
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

721c6725c90961f9b5d3c798cfab56d0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 135KB - Virtual size: 134KB

.rdata Size: 174KB - Virtual size: 173KB

.data Size: 100KB - Virtual size: 102KB

.gfids Size: 512B - Virtual size: 164B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 135KB - Virtual size: 134KB

.rdata
Size: 174KB - Virtual size: 173KB

.data
Size: 100KB - Virtual size: 102KB

.gfids
Size: 512B - Virtual size: 164B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 8KB - Virtual size: 7KB