b6fb293632608978b34f2af759b51ff3ecd198eb495de43a0b845dceed513efc

General

Target

b6fb293632608978b34f2af759b51ff3ecd198eb495de43a0b845dceed513efc
Size

169KB
MD5

685f862334215b121715934b95732bdf
SHA1

dd83f5aea31e34b2d4a395741eef45749afc33b6
SHA256

b6fb293632608978b34f2af759b51ff3ecd198eb495de43a0b845dceed513efc
SHA512

d56e2aa73d396ba551325dc9ebd29275696104f5a170bfbbdc320ec6c84c66f7efbc3b9178782f582e029c044948de24b6a850521fd866460efafaac4cd09b9e
SSDEEP

1536:nVILIlzZWMD3uPmZcS46uTq33IUHcHdMlIIQ5SbaZwN0DCfNI7dxY:nVILISWcSgg4U8XIQ5+aZwN0DC2d

Score

N/A

Malware Config

Signatures

Files

b6fb293632608978b34f2af759b51ff3ecd198eb495de43a0b845dceed513efc
.exe windows x86

c72d0c7d28d064343490c4e7ddd12c6f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageA
GetCurrencyFormatA
SetCommTimeouts
GlobalAlloc
Sleep
GetExitCodeProcess
GetFileAttributesW
GetModuleHandleW
WritePrivateProfileStringW
GetNamedPipeHandleStateW
FindFirstFileExA
GetLastError
GetProcAddress
GetCurrentProcessId
GetPrivateProfileSectionW
LCMapStringW
CreateHardLinkA
HeapAlloc
GetLocaleInfoA
lstrlenA
FindResourceA
ReadFile
CreateFileA
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
InitializeCriticalSectionAndSpinCount
VirtualAlloc
HeapReAlloc
RtlUnwind
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
HeapSize

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 73KB - Virtual size: 41.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c72d0c7d28d064343490c4e7ddd12c6f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 58KB - Virtual size: 58KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 73KB - Virtual size: 41.8MB

.rsrc Size: 28KB - Virtual size: 28KB

.text
Size: 58KB - Virtual size: 58KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 73KB - Virtual size: 41.8MB

.rsrc
Size: 28KB - Virtual size: 28KB