2a10c49c1f018b49c43f1327aab3828c0595301b565938d2f5d1e1e68267ddb3

General

Target

2a10c49c1f018b49c43f1327aab3828c0595301b565938d2f5d1e1e68267ddb3
Size

900KB
MD5

885c6fb48e337e4c740ebcf128ebf2b5
SHA1

efe83eb579225dc660f0f210aeb2787af61fb738
SHA256

2a10c49c1f018b49c43f1327aab3828c0595301b565938d2f5d1e1e68267ddb3
SHA512

391a8f94042823713e9da52c1bec9ccc7383569f40578e1261300c701a66de29fb11d4968e33248a751e5f63ac8c82f733b6b5fdc007c38b4c7745f794fd5100
SSDEEP

12288:utIxL7JgCFv/gs2NJeLz02y3Lo2Jxy51vc+F02qwyrzYZQurP/Koeiagf+Wfidp/:GIxL93Wsc2OzBtNrPurnKOaGfLc8Fl50

Score

N/A

Malware Config

Signatures

Files

2a10c49c1f018b49c43f1327aab3828c0595301b565938d2f5d1e1e68267ddb3
.exe windows x86

50870d4e7ea17fef2dfdac3f0de3e023

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
GetTickCount
GetLastError
GetCommandLineA
GetVersion
GetCurrentThreadId
GetModuleHandleA
ExitProcess
GetCurrentProcessId
HeapAlloc
GetProcessHeap
InterlockedIncrement
LeaveCriticalSection
Sleep
TlsGetValue
CreateProcessW
GlobalAlloc
CreateFileW
InitializeCriticalSection
GetEnvironmentStrings
TerminateProcess
GetStringTypeW
HeapReAlloc
GetACP
FindNextFileA
CloseHandle
GetStartupInfoA
WriteFile
SetUnhandledExceptionFilter
FindFirstFileA
SetFilePointer
TlsFree
CreateThread
RaiseException
InterlockedDecrement
UnhandledExceptionFilter
WideCharToMultiByte
CreateDirectoryA
GetLocaleInfoA
GetConsoleMode
SizeofResource
EnterCriticalSection
GetCurrentProcess
FreeEnvironmentStringsA
GetLocalTime
GetModuleFileNameA
LoadLibraryA
GlobalUnlock
GetEnvironmentStringsW
GetVersionExA
IsDebuggerPresent
TlsSetValue
QueryPerformanceCounter
GetOEMCP
WaitForSingleObject
SetHandleCount
LCMapStringW
HeapDestroy
HeapFree
FindFirstFileW

user32

EnableWindow
DispatchMessageA
GetClientRect
FillRect
GetWindow
SendMessageA
TranslateMessage
PostQuitMessage
IsIconic

Sections

.text
Size: 864KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50870d4e7ea17fef2dfdac3f0de3e023

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 864KB - Virtual size: 1.2MB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 20KB - Virtual size: 20KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 864KB - Virtual size: 1.2MB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 20KB - Virtual size: 20KB

.rsrc
Size: 10KB - Virtual size: 9KB