747f160f1351ccc79c8ae7bfa7b663db22dde35990414d5eb68bdb1cbcb4eb70

General

Target

747f160f1351ccc79c8ae7bfa7b663db22dde35990414d5eb68bdb1cbcb4eb70
Size

3.8MB
MD5

c506b603b1b4d33e062db81f8e9b265f
SHA1

da087bac2fe8ba2a5c0c20b8d6a4f5251c8d8499
SHA256

747f160f1351ccc79c8ae7bfa7b663db22dde35990414d5eb68bdb1cbcb4eb70
SHA512

98dc6fe5c1c3cc3fe7b02c0f57f31f39af671ea498350d986d362e63b1c28540dc3c583803152681a935a416f10225292d9f9719e3f8d6bd0ceb45d2ca2f5aff
SSDEEP

98304:fNt9PwOx928bVf9aupax9QKEhDUmLGQlED8:1w8ZFauU4RDLGQlED

Score

N/A

Malware Config

Signatures

Files

747f160f1351ccc79c8ae7bfa7b663db22dde35990414d5eb68bdb1cbcb4eb70
.exe windows x86

3354164d2af1f7e1093ed095ab6fbef0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDefaultLCID
GetTickCount
GetExitCodeProcess
ReplaceFileW
ReadFile
lstrcatA
lstrlenW
GlobalUnlock
CreateHardLinkA
GetLastError
GetProcAddress
GetModuleHandleA
GetCurrentProcessId
UnregisterWaitEx
OpenFileMappingA
TlsFree
GetUserDefaultLCID
GetCurrentProcess
LoadResource
GetNumberOfConsoleInputEvents
GlobalFix
EncodePointer
DecodePointer
GetModuleHandleW
ExitProcess
GetCommandLineW
HeapSetInformation
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
HeapSize
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
LoadLibraryW
TlsAlloc
TlsGetValue
TlsSetValue
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
WriteFile
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapCreate
QueryPerformanceCounter
GetSystemTimeAsFileTime
HeapAlloc
HeapReAlloc
RtlUnwind
HeapFree
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
IsProcessorFeaturePresent
LCMapStringW
MultiByteToWideChar
GetStringTypeW

advapi32

SetServiceObjectSecurity
StartServiceCtrlDispatcherW

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 41.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3354164d2af1f7e1093ed095ab6fbef0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 3.7MB - Virtual size: 3.7MB

.data Size: 10KB - Virtual size: 41.5MB

.rsrc Size: 79KB - Virtual size: 78KB

.text
Size: 3.7MB - Virtual size: 3.7MB

.data
Size: 10KB - Virtual size: 41.5MB

.rsrc
Size: 79KB - Virtual size: 78KB