e3edf5e1c47e823f99c16bf388395a3a51708f492fdd057b58b19660dc96417e

Sharing

Copy URL

Twitter E-mail

General

Target

e3edf5e1c47e823f99c16bf388395a3a51708f492fdd057b58b19660dc96417e
Size

281KB
MD5

4492cce08449651654708c03f621ba63
SHA1

8896c08bec98a3b7f5c1b6fa8fd005586a035617
SHA256

e3edf5e1c47e823f99c16bf388395a3a51708f492fdd057b58b19660dc96417e
SHA512

e0f9c97b2959bb17de8c351fc315ed9691d5f6154907541baedb29448c70e1f57d64cdf59d6cf7408ed8f229ac123da67f2075c53188ffcf1a562735ac417899
SSDEEP

3072:NpIHLcdHVPNC6Wn6VWozP6voh5TDbItMoRs8Mcs8Mcs8Mcs8M9Ndt9Ndt9NdtGWe:codlNPTzPDn9og5x05GLb9efko

Score

N/A

Malware Config

Signatures

Files

e3edf5e1c47e823f99c16bf388395a3a51708f492fdd057b58b19660dc96417e
.exe windows x86

772b223ec82e9a4e2c7563388633ba2e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedExchangeAdd
CreateActCtxA
AddRefActCtx
ReleaseActCtx
CreateConsoleScreenBuffer
WaitNamedPipeA
GetLastError
GetPrivateProfileSectionA
TryEnterCriticalSection
EnterCriticalSection
LocalShrink
ReadFileEx
SetFileShortNameA
ReadProcessMemory
SetEvent
GetConsoleTitleA
AllocConsole
SetConsoleCtrlHandler
LoadLibraryA
LocalAlloc
GetProcAddress
GetSystemDefaultUILanguage
GetConsoleAliasA
DeleteTimerQueueEx
GetProcessHeaps
HeapQueryInformation
lstrlenA
lstrlenW
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedCompareExchange
InterlockedExchange
MultiByteToWideChar
Sleep
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
RtlUnwind
RaiseException
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
GetStartupInfoA
LCMapStringA
LCMapStringW
GetCPInfo
GetStringTypeW
HeapAlloc
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetACP
GetOEMCP
IsValidCodePage
GetLocaleInfoA
GetStringTypeA
HeapSize
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
InitializeCriticalSectionAndSpinCount
SetFilePointer
GetConsoleCP
GetConsoleMode
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
CloseHandle
FlushFileBuffers

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 30.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

772b223ec82e9a4e2c7563388633ba2e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 95KB - Virtual size: 94KB

.data Size: 28KB - Virtual size: 30.8MB

.tls Size: 5KB - Virtual size: 4KB

.rsrc Size: 111KB - Virtual size: 111KB

.reloc Size: 40KB - Virtual size: 40KB

.text
Size: 95KB - Virtual size: 94KB

.data
Size: 28KB - Virtual size: 30.8MB

.tls
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 111KB - Virtual size: 111KB

.reloc
Size: 40KB - Virtual size: 40KB