2e5280f5bd57205a3f4034a1bbe8b0ae697f2a68fb77775dc33c18b78628efdf

General

Target

2e5280f5bd57205a3f4034a1bbe8b0ae697f2a68fb77775dc33c18b78628efdf
Size

3.9MB
MD5

f0ba0b617c4f6be9bb0091003dd55a18
SHA1

dcc4ecfc0016ae1a649929f29ae87eaae1fac9a7
SHA256

2e5280f5bd57205a3f4034a1bbe8b0ae697f2a68fb77775dc33c18b78628efdf
SHA512

9ebefffdf4bc6aa73e03dcb105ad327b170dbbb03746e43f4ce59571f19c27b5ee722dfaa7bc384b90cfd44648bb2550c2beb29be71ab649c7564e10cdb9a8ff
SSDEEP

98304:4mflBO56aBiTZPgr957OnETm/huRkyLkX:JswaBiTZPgrfCETm/huRB

Score

N/A

Malware Config

Signatures

Files

2e5280f5bd57205a3f4034a1bbe8b0ae697f2a68fb77775dc33c18b78628efdf
.exe windows x86

f29cf397adaf6d5dbb71dfd0c78a47ee

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
GlobalAlloc
GetConsoleMode
GetExitCodeProcess
ReadFile
lstrcatA
lstrlenW
GlobalUnlock
GlobalUnfix
GetTickCount
GetProcAddress
GetProcessId
GetModuleHandleA
OpenFileMappingW
UnregisterWaitEx
TlsFree
GetUserDefaultLCID
GetCurrentProcess
LoadResource
lstrcmpA
GetLastError
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
DecodePointer
GetModuleHandleW
ExitProcess
GetCommandLineW
HeapSetInformation
GetStartupInfoW
GetModuleFileNameW
RaiseException
EncodePointer
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
HeapValidate
IsBadReadPtr
WriteFile
GetStdHandle
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
GetCurrentThreadId
SetLastError
LoadLibraryW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapCreate
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
RtlUnwind
HeapAlloc
GetModuleFileNameA
HeapReAlloc
HeapSize
HeapQueryInformation
HeapFree
WideCharToMultiByte
LCMapStringW
MultiByteToWideChar
GetStringTypeW
SetFilePointer
GetConsoleCP
SetStdHandle
CreateFileW
CloseHandle
FlushFileBuffers

advapi32

SetServiceObjectSecurity
StartServiceCtrlDispatcherA

Sections

.text
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 561KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f29cf397adaf6d5dbb71dfd0c78a47ee

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 3.8MB - Virtual size: 3.8MB

.data Size: 63KB - Virtual size: 561KB

.rsrc Size: 76KB - Virtual size: 2.7MB

.text
Size: 3.8MB - Virtual size: 3.8MB

.data
Size: 63KB - Virtual size: 561KB

.rsrc
Size: 76KB - Virtual size: 2.7MB