134aec21b9a203def04fecc854e19e5f59bc129c0a42bf8c10aa5af161077bb7

Sharing

Copy URL

Twitter E-mail

General

Target

134aec21b9a203def04fecc854e19e5f59bc129c0a42bf8c10aa5af161077bb7
Size

319KB
MD5

03a38f91d32612992a31ea130aa780db
SHA1

74f0b8e1e5e3d91069ed061856cbc7306b5c852c
SHA256

134aec21b9a203def04fecc854e19e5f59bc129c0a42bf8c10aa5af161077bb7
SHA512

78cdbafd83805efaf9c23e9f8ff0113fe379cdcd975a09162fa64c010028e6d3b404cd0e25ec3fb769ec3dfef23e2aed510ce0baf0c9391d6fa968dcb3c62848
SSDEEP

6144:mrzQ1Fco9UWu5rWQcKNkkUPZ9qXrS0NVOA4W141L:mr01l9UWWrvNkkmZ9qXu0NVUW14t

Score

N/A

Malware Config

Signatures

Files

134aec21b9a203def04fecc854e19e5f59bc129c0a42bf8c10aa5af161077bb7
.exe windows x86

32bce393cb54cb1fe98663ad8ce84308

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetNumaProcessorNode
FindFirstVolumeW
ExitProcess
FatalExit
WTSGetActiveConsoleSessionId
GetVersionExW
VerifyVersionInfoW
GetPrivateProfileStringA
GetConsoleCP
TlsGetValue
SetConsoleMode
CopyFileExW
VerLanguageNameW
FindFirstChangeNotificationW
FreeEnvironmentStringsA
RequestWakeupLatency
SetVolumeMountPointA
SetCurrentDirectoryW
GetLongPathNameA
TlsSetValue
VerifyVersionInfoA
SetConsoleCursorInfo
GlobalHandle
TzSpecificLocalTimeToSystemTime
SetProcessShutdownParameters
CompareStringW
LocalLock
GetNamedPipeHandleStateA
BuildCommDCBAndTimeoutsA
GetProcAddress
GetModuleHandleA
LocalAlloc
SleepEx
MoveFileExA
SetEnvironmentVariableW
InterlockedDecrement
InterlockedExchange
DeleteFileW
GetVolumePathNamesForVolumeNameA
GetPrivateProfileIntA
HeapValidate
GetProcessHeaps
CreateNamedPipeA
GetCPInfoExA
GetSystemWindowsDirectoryW
GetSystemWow64DirectoryA
SetLastError
GetPrivateProfileStringW
GetCalendarInfoA
GetLastError
GetStringTypeA
DeleteVolumeMountPointW
GetThreadSelectorEntry
WaitForDebugEvent
FindFirstFileA
WriteFileGather
GetTempPathW
GetDefaultCommConfigW
UnmapViewOfFile
GlobalUnWire
WritePrivateProfileSectionA
TerminateThread
lstrcatW
VirtualLock
InterlockedPopEntrySList
OutputDebugStringA
GetPrivateProfileIntW
SetConsoleTitleA
DefineDosDeviceW
LoadLibraryW
WritePrivateProfileStringA
WaitNamedPipeA
InterlockedIncrement
TerminateProcess
GetComputerNameW
ResetEvent
GetThreadContext
MoveFileExW
GlobalLock
UnregisterWaitEx
BuildCommDCBA
PeekConsoleInputW
ReadConsoleOutputW
GetNumberFormatW
EnumDateFormatsA
GetStdHandle
GetPrivateProfileSectionNamesA
FindResourceExA
EnumTimeFormatsA
SetLocalTime
FindNextFileA
FindFirstFileW
FreeEnvironmentStringsW
DuplicateHandle
CreateSemaphoreW
OutputDebugStringW
SetFileValidData
lstrcpyA
HeapSetInformation
CreateHardLinkW
SetThreadExecutionState
SetSystemTime
LockFile
EnumCalendarInfoExW
SetConsoleCP
SetConsoleScreenBufferSize
SearchPathA
CreateIoCompletionPort
IsBadStringPtrW
GetAtomNameW
GetConsoleAliasExesLengthW
WriteConsoleInputA
LocalUnlock
EnumDateFormatsW
SetCommConfig
_lclose
EnumSystemLocalesW
GetCommState
SetFilePointer
CreateTimerQueueTimer
ResetWriteWatch
OpenSemaphoreW
CreateActCtxW
GetSystemTimeAdjustment
GetConsoleScreenBufferInfo
GetComputerNameA
HeapFree
CommConfigDialogW
GetModuleFileNameW
OpenMutexW
GetBinaryTypeW
AllocateUserPhysicalPages
FindResourceW
AreFileApisANSI
DeleteTimerQueueTimer
EnumResourceNamesW
CreateTimerQueue
GetProcessHandleCount
UnregisterWait
IsBadWritePtr
GetCurrentProcessId
FatalAppExitW
GetFileAttributesA
lstrcpynW
WriteConsoleOutputAttribute
GetCompressedFileSizeW
SetFileShortNameA
GetFullPathNameW
WriteProfileStringA
CreateJobSet
GlobalAddAtomA
EnumDateFormatsExA
QueryInformationJobObject
QueryDosDeviceA
LeaveCriticalSection
SetCurrentDirectoryA
SetUnhandledExceptionFilter
GetBinaryTypeA
BackupRead
lstrlenW
EncodePointer
DecodePointer
MoveFileA
DeleteFileA
GetCommandLineW
GetStartupInfoW
IsProcessorFeaturePresent
IsBadReadPtr
GetModuleHandleW
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
WriteFile
EnterCriticalSection
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
TlsAlloc
TlsFree
HeapCreate
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
RaiseException
HeapAlloc
HeapReAlloc
HeapSize
HeapQueryInformation
RtlUnwind
WideCharToMultiByte
GetConsoleMode
WriteConsoleW
LCMapStringW
MultiByteToWideChar
GetStringTypeW
FlushFileBuffers
SetStdHandle
CloseHandle
CreateFileW

Sections

.text
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 562KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32bce393cb54cb1fe98663ad8ce84308

Code Sign

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 232KB - Virtual size: 232KB

.data Size: 55KB - Virtual size: 562KB

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 14KB - Virtual size: 14KB

.text
Size: 232KB - Virtual size: 232KB

.data
Size: 55KB - Virtual size: 562KB

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 14KB - Virtual size: 14KB