irata | flaresolverr_linux_x64[.]tar[.]gz

Resubmissions

15-04-2024 19:07

240415-xswmkaga3t 10

15-04-2024 19:02

240415-xp7wesdf22 10

15-04-2024 18:57

240415-xl1ypsfg8z 10

15-04-2024 17:45

240415-wbqjjsef21 10

Sharing

Copy URL

Twitter E-mail

General

Target

flaresolverr_linux_x64.tar.gz
Size

184.2MB
MD5

9225933772fb5d0756b8c3e5e1bad12f
SHA1

510513564ad50236b2c5c073ba64fd91d31b47e2
SHA256

658f2cc9ea232274aa8da29273ba7cf09e151fdf200b3bd3082aa1d3915b3a4c
SHA512

51a0d0c7d134d45df77d23aa08fb7aca2355f58304be620e877c24b9dc3f03ee824b98424e9a975cfd18abc99f35d601a629d32573c83da846b391157161d62f
SSDEEP

3145728:glY/3pzWl4A0mWke+BHPw7Ul+YPI0oaYZhpmhY3JeEtXxh0FBm/QqgCo+C7cO5:oYP4uBmv1V7P1qZ0xEim/JgP

Score

10^/10

irata

Malware Config

Signatures

Irata family
irata

Irata payload 1 IoCs

Processes:

resource	yara_rule
static1/unpack002/flaresolverr/chrome/chrome	family_irata5

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack002/flaresolverr/selenium/webdriver/common/windows/selenium-manager.exe

Files

flaresolverr_linux_x64.tar.gz
.gz
flaresolverr_linux_x64.tar
.tar
flaresolverr/base_library.zip
.zip
_collections_abc.pyc
_weakrefset.pyc
abc.pyc
codecs.pyc
collections/__init__.pyc
collections/abc.pyc
copyreg.pyc
encodings/__init__.pyc
encodings/aliases.pyc
encodings/ascii.pyc
encodings/base64_codec.pyc
encodings/big5.pyc
encodings/big5hkscs.pyc
encodings/bz2_codec.pyc
encodings/charmap.pyc
encodings/cp037.pyc
encodings/cp1006.pyc
encodings/cp1026.pyc
encodings/cp1125.pyc
encodings/cp1140.pyc
encodings/cp1250.pyc
encodings/cp1251.pyc
encodings/cp1252.pyc
encodings/cp1253.pyc
encodings/cp1254.pyc
encodings/cp1255.pyc
encodings/cp1256.pyc
encodings/cp1257.pyc
encodings/cp1258.pyc
encodings/cp273.pyc
encodings/cp424.pyc
encodings/cp437.pyc
encodings/cp500.pyc
encodings/cp720.pyc
encodings/cp737.pyc
encodings/cp775.pyc
encodings/cp850.pyc
encodings/cp852.pyc
encodings/cp855.pyc
encodings/cp856.pyc
encodings/cp857.pyc
encodings/cp858.pyc
encodings/cp860.pyc
encodings/cp861.pyc
encodings/cp862.pyc
encodings/cp863.pyc
encodings/cp864.pyc
encodings/cp865.pyc
encodings/cp866.pyc
encodings/cp869.pyc
encodings/cp874.pyc
encodings/cp875.pyc
encodings/cp932.pyc
encodings/cp949.pyc
encodings/cp950.pyc
encodings/euc_jis_2004.pyc
encodings/euc_jisx0213.pyc
encodings/euc_jp.pyc
encodings/euc_kr.pyc
encodings/gb18030.pyc
encodings/gb2312.pyc
encodings/gbk.pyc
encodings/hex_codec.pyc
encodings/hp_roman8.pyc
encodings/hz.pyc
encodings/idna.pyc
encodings/iso2022_jp.pyc
encodings/iso2022_jp_1.pyc
encodings/iso2022_jp_2.pyc
encodings/iso2022_jp_2004.pyc
encodings/iso2022_jp_3.pyc
encodings/iso2022_jp_ext.pyc
encodings/iso2022_kr.pyc
encodings/iso8859_1.pyc
encodings/iso8859_10.pyc
encodings/iso8859_11.pyc
encodings/iso8859_13.pyc
encodings/iso8859_14.pyc
encodings/iso8859_15.pyc
encodings/iso8859_16.pyc
encodings/iso8859_2.pyc
encodings/iso8859_3.pyc
encodings/iso8859_4.pyc
encodings/iso8859_5.pyc
encodings/iso8859_6.pyc
encodings/iso8859_7.pyc
encodings/iso8859_8.pyc
encodings/iso8859_9.pyc
encodings/johab.pyc
encodings/koi8_r.pyc
encodings/koi8_t.pyc
encodings/koi8_u.pyc
encodings/kz1048.pyc
encodings/latin_1.pyc
encodings/mac_arabic.pyc
encodings/mac_croatian.pyc
encodings/mac_cyrillic.pyc
encodings/mac_farsi.pyc
encodings/mac_greek.pyc
encodings/mac_iceland.pyc
encodings/mac_latin2.pyc
encodings/mac_roman.pyc
encodings/mac_romanian.pyc
encodings/mac_turkish.pyc
encodings/mbcs.pyc
encodings/oem.pyc
encodings/palmos.pyc
encodings/ptcp154.pyc
encodings/punycode.pyc
encodings/quopri_codec.pyc
encodings/raw_unicode_escape.pyc
encodings/rot_13.pyc
encodings/shift_jis.pyc
encodings/shift_jis_2004.pyc
encodings/shift_jisx0213.pyc
encodings/tis_620.pyc
encodings/undefined.pyc
encodings/unicode_escape.pyc
encodings/utf_16.pyc
encodings/utf_16_be.pyc
encodings/utf_16_le.pyc
encodings/utf_32.pyc
encodings/utf_32_be.pyc
encodings/utf_32_le.pyc
encodings/utf_7.pyc
encodings/utf_8.pyc
encodings/utf_8_sig.pyc
encodings/uu_codec.pyc
encodings/zlib_codec.pyc
enum.pyc
fnmatch.pyc
functools.pyc
genericpath.pyc
heapq.pyc
io.pyc
ipaddress.pyc
keyword.pyc
linecache.pyc
locale.pyc
ntpath.pyc
operator.pyc
os.pyc
pathlib.pyc
posixpath.pyc
re/__init__.pyc
re/_casefix.pyc
re/_compiler.pyc
re/_constants.pyc
re/_parser.pyc
reprlib.pyc
sre_compile.pyc
sre_constants.pyc
sre_parse.pyc
stat.pyc
token.pyc
tokenize.pyc
traceback.pyc
types.pyc
urllib/__init__.pyc
urllib/error.pyc
urllib/parse.pyc
urllib/request.pyc
urllib/response.pyc
urllib/robotparser.pyc
warnings.pyc
weakref.pyc
flaresolverr/certifi/cacert.pem
flaresolverr/charset_normalizer/md.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/charset_normalizer/md__mypyc.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/chrome/MEIPreload/manifest.json
flaresolverr/chrome/MEIPreload/preloaded_data.pb
flaresolverr/chrome/chrome
.elf linux x64
flaresolverr/chrome/chrome-wrapper
.sh linux
flaresolverr/chrome/chrome_100_percent.pak
flaresolverr/chrome/chrome_200_percent.pak
flaresolverr/chrome/chrome_crashpad_handler
.elf linux x64
flaresolverr/chrome/chrome_sandbox
.elf linux x64
flaresolverr/chrome/icudtl.dat
flaresolverr/chrome/libEGL.so
.elf linux x64
flaresolverr/chrome/libGLESv2.so
.elf linux x64
flaresolverr/chrome/libvk_swiftshader.so
.elf linux x64
flaresolverr/chrome/libvulkan.so.1
.elf linux x64
flaresolverr/chrome/locales/af.pak
flaresolverr/chrome/locales/af.pak.info
flaresolverr/chrome/locales/am.pak
flaresolverr/chrome/locales/am.pak.info
flaresolverr/chrome/locales/ar-XB.pak
flaresolverr/chrome/locales/ar-XB.pak.info
flaresolverr/chrome/locales/ar.pak
flaresolverr/chrome/locales/ar.pak.info
flaresolverr/chrome/locales/bg.pak
flaresolverr/chrome/locales/bg.pak.info
flaresolverr/chrome/locales/bn.pak
flaresolverr/chrome/locales/bn.pak.info
flaresolverr/chrome/locales/ca.pak
flaresolverr/chrome/locales/ca.pak.info
flaresolverr/chrome/locales/cs.pak
flaresolverr/chrome/locales/cs.pak.info
flaresolverr/chrome/locales/da.pak
flaresolverr/chrome/locales/da.pak.info
flaresolverr/chrome/locales/de.pak
flaresolverr/chrome/locales/de.pak.info
flaresolverr/chrome/locales/el.pak
flaresolverr/chrome/locales/el.pak.info
flaresolverr/chrome/locales/en-GB.pak
flaresolverr/chrome/locales/en-GB.pak.info
flaresolverr/chrome/locales/en-US.pak
flaresolverr/chrome/locales/en-US.pak.info
flaresolverr/chrome/locales/en-XA.pak
flaresolverr/chrome/locales/en-XA.pak.info
flaresolverr/chrome/locales/es-419.pak
flaresolverr/chrome/locales/es-419.pak.info
flaresolverr/chrome/locales/es.pak
flaresolverr/chrome/locales/es.pak.info
flaresolverr/chrome/locales/et.pak
flaresolverr/chrome/locales/et.pak.info
flaresolverr/chrome/locales/fa.pak
flaresolverr/chrome/locales/fa.pak.info
flaresolverr/chrome/locales/fi.pak
flaresolverr/chrome/locales/fi.pak.info
flaresolverr/chrome/locales/fil.pak
flaresolverr/chrome/locales/fil.pak.info
flaresolverr/chrome/locales/fr.pak
flaresolverr/chrome/locales/fr.pak.info
flaresolverr/chrome/locales/gu.pak
flaresolverr/chrome/locales/gu.pak.info
flaresolverr/chrome/locales/he.pak
flaresolverr/chrome/locales/he.pak.info
flaresolverr/chrome/locales/hi.pak
flaresolverr/chrome/locales/hi.pak.info
flaresolverr/chrome/locales/hr.pak
flaresolverr/chrome/locales/hr.pak.info
flaresolverr/chrome/locales/hu.pak
flaresolverr/chrome/locales/hu.pak.info
flaresolverr/chrome/locales/id.pak
flaresolverr/chrome/locales/id.pak.info
flaresolverr/chrome/locales/it.pak
flaresolverr/chrome/locales/it.pak.info
flaresolverr/chrome/locales/ja.pak
flaresolverr/chrome/locales/ja.pak.info
flaresolverr/chrome/locales/kn.pak
flaresolverr/chrome/locales/kn.pak.info
flaresolverr/chrome/locales/ko.pak
flaresolverr/chrome/locales/ko.pak.info
flaresolverr/chrome/locales/lt.pak
flaresolverr/chrome/locales/lt.pak.info
flaresolverr/chrome/locales/lv.pak
flaresolverr/chrome/locales/lv.pak.info
flaresolverr/chrome/locales/ml.pak
flaresolverr/chrome/locales/ml.pak.info
flaresolverr/chrome/locales/mr.pak
flaresolverr/chrome/locales/mr.pak.info
flaresolverr/chrome/locales/ms.pak
flaresolverr/chrome/locales/ms.pak.info
flaresolverr/chrome/locales/nb.pak
flaresolverr/chrome/locales/nb.pak.info
flaresolverr/chrome/locales/nl.pak
flaresolverr/chrome/locales/nl.pak.info
flaresolverr/chrome/locales/pl.pak
flaresolverr/chrome/locales/pl.pak.info
flaresolverr/chrome/locales/pt-BR.pak
flaresolverr/chrome/locales/pt-BR.pak.info
flaresolverr/chrome/locales/pt-PT.pak
flaresolverr/chrome/locales/pt-PT.pak.info
flaresolverr/chrome/locales/ro.pak
flaresolverr/chrome/locales/ro.pak.info
flaresolverr/chrome/locales/ru.pak
flaresolverr/chrome/locales/ru.pak.info
flaresolverr/chrome/locales/sk.pak
flaresolverr/chrome/locales/sk.pak.info
flaresolverr/chrome/locales/sl.pak
flaresolverr/chrome/locales/sl.pak.info
flaresolverr/chrome/locales/sr.pak
flaresolverr/chrome/locales/sr.pak.info
flaresolverr/chrome/locales/sv.pak
flaresolverr/chrome/locales/sv.pak.info
flaresolverr/chrome/locales/sw.pak
flaresolverr/chrome/locales/sw.pak.info
flaresolverr/chrome/locales/ta.pak
flaresolverr/chrome/locales/ta.pak.info
flaresolverr/chrome/locales/te.pak
flaresolverr/chrome/locales/te.pak.info
flaresolverr/chrome/locales/th.pak
flaresolverr/chrome/locales/th.pak.info
flaresolverr/chrome/locales/tr.pak
flaresolverr/chrome/locales/tr.pak.info
flaresolverr/chrome/locales/uk.pak
flaresolverr/chrome/locales/uk.pak.info
flaresolverr/chrome/locales/ur.pak
flaresolverr/chrome/locales/ur.pak.info
flaresolverr/chrome/locales/vi.pak
flaresolverr/chrome/locales/vi.pak.info
flaresolverr/chrome/locales/zh-CN.pak
flaresolverr/chrome/locales/zh-CN.pak.info
flaresolverr/chrome/locales/zh-TW.pak
flaresolverr/chrome/locales/zh-TW.pak.info
flaresolverr/chrome/product_logo_48.png
.png
flaresolverr/chrome/resources.pak
flaresolverr/chrome/resources/inspector_overlay/inspector_overlay_resources.grd
.xml
flaresolverr/chrome/resources/inspector_overlay/main.js
.js
flaresolverr/chrome/v8_context_snapshot.bin
flaresolverr/chrome/vk_swiftshader_icd.json
flaresolverr/chrome/xdg-mime
.sh linux
flaresolverr/chrome/xdg-settings
.sh linux
flaresolverr/flaresolverr
.elf linux x64
flaresolverr/lib-dynload/_asyncio.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_bisect.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_blake2.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_bz2.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_codecs_cn.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_codecs_hk.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_codecs_iso2022.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_codecs_jp.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_codecs_kr.cpython-311-x86_64-linux-gnu.so
.elf .ps1 linux x64 polyglot
flaresolverr/lib-dynload/_codecs_tw.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_contextvars.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_csv.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_ctypes.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_datetime.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_decimal.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_hashlib.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_heapq.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_json.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_lzma.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_md5.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_multibytecodec.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_multiprocessing.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_opcode.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_pickle.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_posixshmem.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_posixsubprocess.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_queue.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_random.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_sha1.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_sha256.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_sha3.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_sha512.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_socket.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_ssl.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_statistics.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_struct.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_typing.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/_uuid.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/array.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/binascii.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/fcntl.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/grp.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/math.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/mmap.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/pyexpat.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/readline.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/resource.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/select.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/syslog.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/termios.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/unicodedata.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/lib-dynload/zlib.cpython-311-x86_64-linux-gnu.so
.elf linux x64
flaresolverr/libbz2.so.1.0
.elf linux x64
flaresolverr/libcrypto.so.3
.elf linux x64
flaresolverr/libffi.so.8
.elf linux x64
flaresolverr/liblzma.so.5
.elf linux x64
flaresolverr/libpython3.11.so.1.0
.elf linux x64
flaresolverr/libreadline.so.8
.elf linux x64
flaresolverr/libssl.so.3
.elf linux x64
flaresolverr/libtinfo.so.6
.elf linux x64
flaresolverr/libuuid.so.1
.elf linux x64
flaresolverr/libz.so.1
.elf linux x64
flaresolverr/package.json
flaresolverr/selenium/webdriver/common/linux/selenium-manager
.elf linux x64
flaresolverr/selenium/webdriver/common/macos/selenium-manager
.macho macos arch:arm64 arch:x64
flaresolverr/selenium/webdriver/common/mutation-listener.js
.js
flaresolverr/selenium/webdriver/common/windows/selenium-manager.exe
.exe windows:4 windows x86 arch:x86

64269085584cd65c2c76ac969291f1cc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW
SystemFunction036

bcrypt

BCryptGenRandom

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
AddVectoredExceptionHandler
CancelIo
CloseHandle
CompareStringOrdinal
CopyFileExW
CreateDirectoryW
CreateEventW
CreateFileMappingA
CreateFileW
CreateHardLinkW
CreateIoCompletionPort
CreateMutexA
CreateNamedPipeW
CreateProcessW
CreateSymbolicLinkW
CreateThread
CreateToolhelp32Snapshot
DeleteFileW
DuplicateHandle
ExitProcess
FindClose
FindFirstFileW
FindNextFileW
FormatMessageW
FreeEnvironmentStringsW
GetBinaryTypeW
GetCommandLineW
GetConsoleMode
GetConsoleScreenBufferInfo
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetEnvironmentStringsW
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesW
GetFileInformationByHandle
GetFileInformationByHandleEx
GetFileType
GetFinalPathNameByHandleW
GetFullPathNameW
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetOverlappedResult
GetProcAddress
GetProcessHeap
GetQueuedCompletionStatusEx
GetStartupInfoA
GetStdHandle
GetSystemDirectoryW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetWindowsDirectoryW
HeapAlloc
HeapFree
HeapReAlloc
InitOnceBeginInitialize
InitOnceComplete
LoadLibraryA
MapViewOfFile
Module32FirstW
Module32NextW
MoveFileExW
MultiByteToWideChar
PostQueuedCompletionStatus
QueryPerformanceCounter
QueryPerformanceFrequency
ReadFile
ReadFileEx
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
SetConsoleMode
SetConsoleTextAttribute
SetFileAttributesW
SetFileCompletionNotificationModes
SetFileInformationByHandle
SetFilePointerEx
SetFileTime
SetHandleInformation
SetLastError
SetThreadStackGuarantee
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
SleepEx
SwitchToThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
UnmapViewOfFile
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WriteConsoleW
WriteFileEx
lstrlenW
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
GetCurrentThreadId
GetHandleInformation
GetProcessAffinityMask
GetThreadContext
GetThreadPriority
GetTickCount
InitializeCriticalSection
IsDebuggerPresent
LeaveCriticalSection
OpenProcess
OutputDebugStringA
RaiseException
ReleaseSemaphore
RemoveVectoredExceptionHandler
ResetEvent
ResumeThread
SetEvent
SetProcessAffinityMask
SetThreadContext
SetThreadPriority
SuspendThread
TryEnterCriticalSection
VirtualProtect
VirtualQuery

ole32

CoTaskMemFree

shell32

SHGetKnownFolderPath

ws2_32

WSACleanup
WSAGetLastError
WSAIoctl
WSASend
WSASocketW
WSAStartup
bind
closesocket
connect
freeaddrinfo
getaddrinfo
getpeername
getsockname
getsockopt
ioctlsocket
recv
send
setsockopt
shutdown

msvcrt

__getmainargs
__initenv
__p__acmdln
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_amsg_exit
_assert
_beginthreadex
_cexit
_commode
_endthreadex
_errno
_fmode
_fpreset
_initterm
_iob
_onexit
_setjmp3
_strdup
_ultoa
abort
calloc
exit
fprintf
free
fwrite
longjmp
malloc
memcmp
memcpy
memmove
memset
pow
printf
realloc
signal
strlen
strncmp
vfprintf

ntdll

NtCancelIoFileEx
NtCreateFile
NtDeviceIoControlFile
NtReadFile
NtWriteFile
RtlCaptureContext
RtlNtStatusToDosError

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 270KB - Virtual size: 269KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 700B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
flaresolverr/selenium/webdriver/firefox/webdriver_prefs.json
flaresolverr/selenium/webdriver/remote/findElements.js
.js
flaresolverr/selenium/webdriver/remote/getAttribute.js
.js
flaresolverr/selenium/webdriver/remote/isDisplayed.js
.js
flaresolverr/setuptools-65.5.0.dist-info/INSTALLER
flaresolverr/setuptools-65.5.0.dist-info/LICENSE
flaresolverr/setuptools-65.5.0.dist-info/METADATA
flaresolverr/setuptools-65.5.0.dist-info/RECORD
flaresolverr/setuptools-65.5.0.dist-info/WHEEL
flaresolverr/setuptools-65.5.0.dist-info/entry_points.txt
flaresolverr/setuptools-65.5.0.dist-info/top_level.txt
flaresolverr/websockets-11.0.3.dist-info/INSTALLER
flaresolverr/websockets-11.0.3.dist-info/LICENSE
flaresolverr/websockets-11.0.3.dist-info/METADATA
flaresolverr/websockets-11.0.3.dist-info/RECORD
flaresolverr/websockets-11.0.3.dist-info/WHEEL
flaresolverr/websockets-11.0.3.dist-info/top_level.txt
flaresolverr/websockets/speedups.cpython-311-x86_64-linux-gnu.so
.elf linux x64

Resubmissions

Sharing

General

Malware Config

Signatures

Files

64269085584cd65c2c76ac969291f1cc

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

bcrypt

kernel32

ole32

shell32

ws2_32

msvcrt

ntdll

Sections

.text Size: 2.5MB - Virtual size: 2.5MB

.data Size: 4KB - Virtual size: 3KB

.rdata Size: 1.2MB - Virtual size: 1.2MB

.eh_fram Size: 270KB - Virtual size: 269KB

.bss Size: - Virtual size: 700B

.idata Size: 6KB - Virtual size: 6KB

.CRT Size: 512B - Virtual size: 60B

.tls Size: 512B - Virtual size: 8B

.reloc Size: 99KB - Virtual size: 99KB

.text
Size: 2.5MB - Virtual size: 2.5MB

.data
Size: 4KB - Virtual size: 3KB

.rdata
Size: 1.2MB - Virtual size: 1.2MB

.eh_fram
Size: 270KB - Virtual size: 269KB

.bss
Size: - Virtual size: 700B

.idata
Size: 6KB - Virtual size: 6KB

.CRT
Size: 512B - Virtual size: 60B

.tls
Size: 512B - Virtual size: 8B

.reloc
Size: 99KB - Virtual size: 99KB