0772beb6344a83b590e73f8728fe87160f25be54509d7f4aeee539ded4679eec

Sharing

Copy URL

Twitter E-mail

General

Target

0772beb6344a83b590e73f8728fe87160f25be54509d7f4aeee539ded4679eec
Size

339KB
MD5

3ed37374ea39a60b38aad3321bc23fca
SHA1

b0b815736b65af699ca439ea8f1b28115295d1c0
SHA256

0772beb6344a83b590e73f8728fe87160f25be54509d7f4aeee539ded4679eec
SHA512

45722762ccc39fb1a37af5a46e57f3c78fa6a406449295d564a9132ff22f8815ee953e768d9d00d24a9df6b5be44c4c34071b3d31f4d0bdddef0cb34654feaba
SSDEEP

3072:xFoZg6zYA2z09ujbvDCL7rPd8z2VwrkIZ2AbrYi9Wl8mcHnEKhQMunOBS5j6n2t:xF62V1vOnYnrkI7znHh45OSMv3RKYP

Score

N/A

Malware Config

Signatures

Files

0772beb6344a83b590e73f8728fe87160f25be54509d7f4aeee539ded4679eec
.exe windows x86

5d93d2b46e0af457d414756fe691a81d

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedDecrement
SetMailslotInfo
GetConsoleAliasesLengthA
GetConsoleTitleA
InitializeCriticalSection
SetCommConfig
Sleep
ReadConsoleInputA
GetCalendarInfoW
IsBadCodePtr
GetStringTypeExW
CreateMailslotW
RaiseException
LCMapStringA
GetStdHandle
GetProcAddress
SetFileAttributesA
GetAtomNameA
LoadLibraryA
LocalAlloc
DnsHostnameToComputerNameA
FoldStringA
GetModuleFileNameA
LoadLibraryExA
UpdateResourceW
GetConsoleTitleW
DeleteCriticalSection
GetVersionExA
CreateThread
GetLocaleInfoA
GetDefaultCommConfigW
VirtualAlloc
GetComputerNameA
WideCharToMultiByte
InterlockedIncrement
InterlockedExchange
MultiByteToWideChar
EnterCriticalSection
LeaveCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetLastError
HeapFree
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
GetModuleHandleW
ExitProcess
GetCommandLineA
GetStartupInfoA
GetCPInfo
RtlUnwind
LCMapStringW
GetStringTypeW
WriteFile
HeapAlloc
HeapCreate
VirtualFree
HeapReAlloc
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
ReadFile
CloseHandle
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeA
HeapSize
GetACP
GetOEMCP
IsValidCodePage
SetFilePointer
SetStdHandle
GetConsoleCP
GetConsoleMode
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA

gdi32

GetCharWidthFloatW

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 256KB - Virtual size: 4.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d93d2b46e0af457d414756fe691a81d

Code Sign

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 38KB - Virtual size: 38KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 256KB - Virtual size: 4.2MB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 38KB - Virtual size: 38KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 256KB - Virtual size: 4.2MB

.rsrc
Size: 32KB - Virtual size: 31KB