66bcba12023552c1a11e90e3e2e1bb7b56c52e12ec5f2431e79aab658dc04eb1

General

Target

66bcba12023552c1a11e90e3e2e1bb7b56c52e12ec5f2431e79aab658dc04eb1
Size

2.0MB
MD5

dfa73d924c1f4c3069b0521abb14cfcc
SHA1

f43a95ba78674a100883d372d0c57e1445a08f49
SHA256

66bcba12023552c1a11e90e3e2e1bb7b56c52e12ec5f2431e79aab658dc04eb1
SHA512

6256bbbb87004541fe0483acc962d3d880021f522d53ec04dc9945d9fba965689962058665b53ddd94eaca784e1812edf35df761c792c5d0b583973c790f91e6
SSDEEP

49152:QXgHjl7qSfRYzCNTiKTdOzM6QBrp76kcw5z8BUCF:QXkozCHEY60ztCF

Score

N/A

Malware Config

Signatures

Files

66bcba12023552c1a11e90e3e2e1bb7b56c52e12ec5f2431e79aab658dc04eb1
.exe windows x86

1ccba9c51b3d7a5c63bc4389c95d868a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
GetProcAddress
LoadLibraryW
GetSystemTime
SetStdHandle
GetLocaleInfoA
GetSystemInfo
VirtualProtect
DebugBreak
RaiseException
GetVersionExA
LoadLibraryA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
IsBadWritePtr
IsBadReadPtr
HeapValidate
HeapFree
HeapAlloc
GetProcessHeap
GetModuleFileNameA
CloseHandle
GetCurrentProcess
FreeLibrary
RtlUnwind
TerminateProcess
ExitProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
WriteFile
InterlockedDecrement
OutputDebugStringA
InterlockedIncrement
HeapReAlloc
VirtualAlloc
SetUnhandledExceptionFilter
VirtualQuery
InterlockedExchange
GetCPInfo
GetACP
GetOEMCP
SetConsoleCtrlHandler
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
IsBadCodePtr
LCMapStringA
LCMapStringW
SetFilePointer
FlushFileBuffers

rpcrt4

RpcServerInqBindings
RpcServerInqCallAttributesA
RpcErrorGetNextRecord

Sections

.textbss
Size: - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1ccba9c51b3d7a5c63bc4389c95d868a

Headers

File Characteristics

Imports

kernel32

rpcrt4

Sections

.textbss Size: - Virtual size: 77KB

.text Size: 168KB - Virtual size: 167KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 8KB - Virtual size: 62KB

.idata Size: 4KB - Virtual size: 2KB

.textbss
Size: - Virtual size: 77KB

.text
Size: 168KB - Virtual size: 167KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 8KB - Virtual size: 62KB

.idata
Size: 4KB - Virtual size: 2KB