31d1118f4136e4247ddcbf5a7b5a495e80864fa2ec933001a72bf79d5c3b5514

Sharing

Copy URL

Twitter E-mail

General

Target

31d1118f4136e4247ddcbf5a7b5a495e80864fa2ec933001a72bf79d5c3b5514
Size

4.0MB
MD5

fb4c13cac5112b8c0d0a8fa9e9c8ad93
SHA1

b4f88f16f0b5002ace9aac669da29f46a0e52a35
SHA256

31d1118f4136e4247ddcbf5a7b5a495e80864fa2ec933001a72bf79d5c3b5514
SHA512

74a6e0a04acf95bd06f2e42a888e493b327ca51a4c4e9e209b32b93fabf49e9b6460cc5a5a06c58b075aa946aa7ecce4f78f64a2d7f53f1c101a6e225942dd91
SSDEEP

98304:XFBbn9iV8fvJ3XNIXJzooTsB5oJ9++G/IM1SHV/zhw6V:XFBBimXJ3XSX+o05CI+2IM10VLhw6V

Score

N/A

Malware Config

Signatures

Files

31d1118f4136e4247ddcbf5a7b5a495e80864fa2ec933001a72bf79d5c3b5514
.exe windows x86

586816a871d95ee12174f3c3eb7f8be6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassExA
MsgWaitForMultipleObjects
TranslateMessage
CreateWindowExA
PeekMessageA
DefWindowProcA
DispatchMessageA

kernel32

FreeEnvironmentStringsW
ReadFile
SetEndOfFile
GetLastError
CreateThread
FreeLibrary
GetProcAddress
LoadLibraryA
GetModuleHandleA
OutputDebugStringA
VirtualFree
VirtualAlloc
GetTempPathA
VirtualQueryEx
OpenProcess
Thread32First
Thread32Next
SetLastError
VirtualAllocEx
OpenThread
CreateToolhelp32Snapshot
GetVersionExA
CloseHandle
WriteProcessMemory
SuspendThread
ResumeThread
HeapAlloc
HeapFree
GetProcessHeap
IsBadReadPtr
VirtualProtect
WaitForSingleObject
CreateMutexA
GetCurrentThreadId
ReleaseMutex
CreateRemoteThread
GetCommandLineA
GetStartupInfoA
MultiByteToWideChar
WideCharToMultiByte
HeapReAlloc
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
InterlockedDecrement
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
LeaveCriticalSection
EnterCriticalSection
RtlUnwind
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetFilePointer
CreateFileA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
FlushFileBuffers
HeapSize

Sections

.text
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xzdata
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

586816a871d95ee12174f3c3eb7f8be6

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 59KB - Virtual size: 58KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 70KB - Virtual size: 76KB

.xzdata Size: 3.9MB - Virtual size: 3.9MB

.text
Size: 59KB - Virtual size: 58KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 70KB - Virtual size: 76KB

.xzdata
Size: 3.9MB - Virtual size: 3.9MB