fce74c19f417a455402ddd5e2c186d3c6d87279ded542453a8fa616ed65b4889

General

Target

fce74c19f417a455402ddd5e2c186d3c6d87279ded542453a8fa616ed65b4889
Size

272KB
MD5

49ff9639df0feced8aeda22671ae4c46
SHA1

55215da6c5207466d26692fe76c6fdcf7eec1c5e
SHA256

fce74c19f417a455402ddd5e2c186d3c6d87279ded542453a8fa616ed65b4889
SHA512

bf93c9854017c031866fb2ffad727a9816e0473912d71ac3ba2162ae4253024848f350ee5f310d2869f2c2dab6622b5e92fc695de74dc133cf303f2c842a51ec

Score

N/A

Malware Config

Signatures

Files

fce74c19f417a455402ddd5e2c186d3c6d87279ded542453a8fa616ed65b4889
.exe windows x86

cd8ed96dcf990359020da5c59a04eafe

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstChangeNotificationW
WriteConsoleOutputCharacterW
lstrlenA
GetConsoleAliasesLengthW
GetProcessIoCounters
ReadConsoleA
SetMailslotInfo
CreateDirectoryW
GetConsoleAliasesA
GetConsoleTitleA
InitializeCriticalSection
WriteConsoleW
ReplaceFileW
GetBinaryTypeW
CreateDirectoryA
GetStdHandle
GetCPInfoExW
UnregisterWait
GetProcAddress
VirtualAlloc
MoveFileW
WriteProfileSectionA
EnterCriticalSection
GlobalFree
LoadLibraryA
WriteConsoleA
SetConsoleWindowInfo
GetModuleHandleA
FreeEnvironmentStringsW
VirtualProtect
SetCalendarInfoA
InterlockedPushEntrySList
GetLastError
FillConsoleOutputCharacterA
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedCompareExchange
InterlockedExchange
MultiByteToWideChar
Sleep
DeleteCriticalSection
LeaveCriticalSection
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
GetStartupInfoA
GetCPInfo
RtlUnwind
RaiseException
LCMapStringW
LCMapStringA
GetStringTypeW
HeapAlloc
HeapCreate
VirtualFree
HeapReAlloc
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
ExitProcess
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeA
HeapSize
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
InitializeCriticalSectionAndSpinCount
GetLocaleInfoW

Sections

.text
Size: 223KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd8ed96dcf990359020da5c59a04eafe

Code Sign

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 223KB - Virtual size: 223KB

.data Size: 33KB - Virtual size: 293KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 223KB - Virtual size: 223KB

.data
Size: 33KB - Virtual size: 293KB

.rsrc
Size: 14KB - Virtual size: 13KB