025f3da46d16a6a0179a27b0f26d082e29358254a22e6af887b03106e9e9048c

General

Target

025f3da46d16a6a0179a27b0f26d082e29358254a22e6af887b03106e9e9048c
Size

3.8MB
MD5

e2bcfb552fd8fdb88da751306f4bea2a
SHA1

b99331f2858f7ee67ea907419c0769fe2279b672
SHA256

025f3da46d16a6a0179a27b0f26d082e29358254a22e6af887b03106e9e9048c
SHA512

31746515c1278da7a61e6d3a189eb42415265d6d5b364773bd3abd6284d5d7782792c1a357c20e18aca1820db17ea160eec9fa406c2f1019c322de390f262767
SSDEEP

98304:GTem0/0ZJcFMftGfLnmzI8WhE5trD8EK5kzgktXM5G5BCIFV:40c7uMlgYI8W255DImkkfXL

Score

N/A

Malware Config

Signatures

Files

025f3da46d16a6a0179a27b0f26d082e29358254a22e6af887b03106e9e9048c
.exe windows x86

ce2774f995eb86e1291c6544d4100b28

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
ExpandEnvironmentStringsA
VirtualQueryEx
CreateActCtxW
ActivateActCtx
GetConsoleMode
CreateEventA
GetStringTypeExW
TerminateProcess
GetProcAddress
GetTickCount
LocalAlloc
_lread
UpdateResourceW
VirtualProtect
PurgeComm
DeleteFileW
FindActCtxSectionStringW
SetEvent
GetTimeFormatA
SetDefaultCommConfigW
LoadResource
GetProcessIoCounters
SetEndOfFile
GetNumaHighestNodeNumber
RaiseException
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapAlloc
GetLastError
HeapFree
EncodePointer
DecodePointer
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
RtlUnwind
Sleep
TlsGetValue
TlsSetValue
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
LoadLibraryW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
WideCharToMultiByte
LCMapStringW
MultiByteToWideChar
GetStringTypeW

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 50.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.liv
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce2774f995eb86e1291c6544d4100b28

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 3.7MB - Virtual size: 3.7MB

.data Size: 3KB - Virtual size: 50.6MB

.tls Size: 40KB - Virtual size: 40KB

.liv Size: 10KB - Virtual size: 10KB

.rsrc Size: 65KB - Virtual size: 64KB

.text
Size: 3.7MB - Virtual size: 3.7MB

.data
Size: 3KB - Virtual size: 50.6MB

.tls
Size: 40KB - Virtual size: 40KB

.liv
Size: 10KB - Virtual size: 10KB

.rsrc
Size: 65KB - Virtual size: 64KB