3f5c2ca8320cbb82fc77e86eb0dc4bc208fddd20198cb5d65386f58ba7471421

Sharing

Copy URL

Twitter E-mail

General

Target

3f5c2ca8320cbb82fc77e86eb0dc4bc208fddd20198cb5d65386f58ba7471421
Size

236KB
MD5

1c6713d0282f6723bc963c879fc8f7d2
SHA1

6c94575ba1d923b51cdba40ecc0553a33e766e23
SHA256

3f5c2ca8320cbb82fc77e86eb0dc4bc208fddd20198cb5d65386f58ba7471421
SHA512

24eefef37ebf1ea346a5b6a8420aa177a51667a304f1962fe3bdd0b8ee25664b6f2b7b0df15f6f29ea7b7c27f636b1f5cb9b4c31cfc0d14d43cfa48b4c6a8e61
SSDEEP

3072:HR9mSdApAQ6Rli/6ebgnU50ZrseyvCv+OJkgmEeBZV3DwdOwUqx+LR3:x9m0ApADW/fknU50ZRtNXMZUUqcF

Score

N/A

Malware Config

Signatures

Files

3f5c2ca8320cbb82fc77e86eb0dc4bc208fddd20198cb5d65386f58ba7471421
.exe windows x86

75a3f9b5fe7a0621d20b67812c991cc2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FatalAppExitW
OpenFileMappingW
GetConsoleCursorInfo
GetConsoleAliasesLengthW
FlushViewOfFile
GetNumaAvailableMemoryNode
SetNamedPipeHandleState
CreatePipe
OpenProcess
SetProcessAffinityMask
GetOverlappedResult
CreateIoCompletionPort
HeapAlloc
SetConsoleTextAttribute
GlobalAlloc
GetSystemPowerStatus
GetModuleHandleW
SetCalendarInfoW
GetThreadSelectorEntry
GetEnvironmentVariableW
CommConfigDialogA
SetConsoleCursorPosition
GetAtomNameA
GetLastError
CreateMailslotW
IsBadReadPtr
FindFirstVolumeMountPointW
SetStdHandle
WriteConsoleW
CloseHandle
AddAtomW
_lopen
GetProcAddress
GetConsoleOutputCP
InterlockedIncrement
InterlockedDecrement
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
RaiseException
GetCommandLineW
HeapSetInformation
GetStartupInfoW
HeapFree
RtlUnwind
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetStringTypeW
MultiByteToWideChar
WideCharToMultiByte
LoadLibraryW
HeapReAlloc
LCMapStringW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
CreateFileW

user32

GetCursorInfo
GetCaretPos

advapi32

InitializeAcl
GetAclInformation
BackupEventLogA

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 39.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

75a3f9b5fe7a0621d20b67812c991cc2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 69KB - Virtual size: 68KB

.rdata Size: 15KB - Virtual size: 14KB

.data Size: 51KB - Virtual size: 39.9MB

.rsrc Size: 100KB - Virtual size: 99KB

.text
Size: 69KB - Virtual size: 68KB

.rdata
Size: 15KB - Virtual size: 14KB

.data
Size: 51KB - Virtual size: 39.9MB

.rsrc
Size: 100KB - Virtual size: 99KB