86edfd6c7a2fab8c50a372494e3d5b08c032cca754396f6e288d5d4c5738cb4c

General

Target

86edfd6c7a2fab8c50a372494e3d5b08c032cca754396f6e288d5d4c5738cb4c
Size

391KB
MD5

5b6d8a474c556fe327004ed8a33edcdb
SHA1

a677b6aa958fe02cac0730d36e8123648e02884f
SHA256

86edfd6c7a2fab8c50a372494e3d5b08c032cca754396f6e288d5d4c5738cb4c
SHA512

e7ea57e545fab86afe8b9cf1f760e49911e4c076abe61b2b93ff6e075c181b78942aff575244e2d29356a80f88122d3ecb23d5426615cce4b76dd17a14094837
SSDEEP

6144:FCJnalmkhmTBbPrQQEXummT6RVx7YVvJzROPOGjJT:FCEokhlQEyYVxErQP

Score

1^/10

Malware Config

Signatures

Files

86edfd6c7a2fab8c50a372494e3d5b08c032cca754396f6e288d5d4c5738cb4c
.dll windows x64

5d4f67aba37a4e6673982d81a1aae8d0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

CloseHandle
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsDebuggerPresent
GetProcAddress
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext
RtlLookupFunctionEntry

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__std_terminate
__C_specific_handler
memset
__std_type_info_destroy_list
memcpy

api-ms-win-crt-runtime-l1-1-0

_initterm
_initialize_onexit_table
_seh_filter_dll
_configure_narrow_argv
_register_onexit_function
_execute_onexit_table
_crt_atexit
_cexit
_initialize_narrow_environment
_initterm_e

Exports

Exports

create

Sections

.text
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 266KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d4f67aba37a4e6673982d81a1aae8d0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

vcruntime140_1

vcruntime140

api-ms-win-crt-runtime-l1-1-0

Exports

Exports

Sections

.text Size: 121KB - Virtual size: 121KB

.rdata Size: 266KB - Virtual size: 265KB

.data Size: 512B - Virtual size: 266KB

.pdata Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 192B

.text
Size: 121KB - Virtual size: 121KB

.rdata
Size: 266KB - Virtual size: 265KB

.data
Size: 512B - Virtual size: 266KB

.pdata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 192B