General

Malware Config

Signatures

Files

• 85c593fe375ea0a94292482f945a1e9e7fcb3fb75f5663acb6fe0ad3524bb80e.dll

  .dll windows x64

  613d56f9ae8f9890c49dcf4e9c890e6c

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  shell32

  SHGetFolderPathA

  kernel32

  GetModuleFileNameA

  GetLastError

  VirtualAlloc

  VirtualProtect

  GetProcAddress

  LoadLibraryA

  HeapAlloc

  HeapFree

  GetProcessHeap

  CreateFileA

  GetFileSize

  ReadFile

  CloseHandle

  CreateThread

  lstrcatA

  GetCommandLineA

  Sleep

  ExitProcess

  lstrcpyA

  msvcrt

  memset

  shlwapi

  StrStrIA

  StrChrA

  Exports

  Exports

  DllMain

  Sections

  .text

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 1024B - Virtual size: 884B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 512B - Virtual size: 108B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ