98df2ba8af22e5e68b64ede62b27cf8b9f2a6a33a2fe4025f04d31411b425a92

General

Target

98df2ba8af22e5e68b64ede62b27cf8b9f2a6a33a2fe4025f04d31411b425a92
Size

250KB
MD5

a9cb2953152a2244d82efe39f5518364
SHA1

04f5f5aba2a7d0253ea5cf3d30a995968b4f1db7
SHA256

98df2ba8af22e5e68b64ede62b27cf8b9f2a6a33a2fe4025f04d31411b425a92
SHA512

a9c860485959aea7502b63d8b744dd97d61f9263d20056dad0b6011a4f359eeff9005320bea17fb0cdd44f7b1ebb11df93fbaf93f003d88d60772531fa6128d2
SSDEEP

6144:sWOn1Z+UIkI9l8mGzis7SomPtt54JB9iGL:7y1EOK8zi05UtbU9iG

Score

N/A

Malware Config

Signatures

Files

98df2ba8af22e5e68b64ede62b27cf8b9f2a6a33a2fe4025f04d31411b425a92
.exe windows x86

f7b9c1f415847888a3c1b007f54171c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemInfo
GetLastError
WriteFile
GetEnvironmentStrings
RtlUnwind
MultiByteToWideChar
GetDateFormatA
GetCurrentProcess
IsValidCodePage
VirtualAlloc
TlsSetValue
VirtualProtect
HeapReAlloc
HeapDestroy
EnterCriticalSection
HeapCreate
GetStdHandle
InterlockedExchange
GetModuleFileNameA
GetStringTypeW
LeaveCriticalSection
ExitProcess
GetTimeZoneInformation
LCMapStringW
SetLastError
LoadLibraryA
GetTickCount
GetSystemTimeAsFileTime
IsValidLocale
GetStartupInfoA
TlsGetValue
QueryPerformanceCounter
DeleteCriticalSection
UnhandledExceptionFilter
GetCPInfo
VirtualQuery
GetCurrentThreadId
GetOEMCP
HeapAlloc
InitializeCriticalSection
HeapFree
CompareStringA
TerminateProcess
GetCurrentProcessId
GetCurrentThread
SetEnvironmentVariableA
LCMapStringA
GetTempFileNameW
TlsFree
GetLocaleInfoW
GetUserDefaultLCID
SetHandleCount
GetStringTypeA
VirtualFree
WideCharToMultiByte
FreeEnvironmentStringsA
GetEnvironmentStringsW
GetModuleHandleA
EnumSystemLocalesA
GetTimeFormatA
GetCommandLineA
CompareStringW
IsBadWritePtr
GetACP
FreeEnvironmentStringsW
GetLocaleInfoA
TlsAlloc
GetProcAddress
GetVersionExA
HeapSize
GetFileType

advapi32

RegOpenKeyW
RegDeleteKeyW
RegQueryValueA
CryptVerifySignatureW
RegEnumKeyW
CryptEnumProvidersW
ReportEventW
LookupPrivilegeNameA
LookupPrivilegeNameW

user32

LoadBitmapW
DdeDisconnect
SetPropW
GetWindowDC

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 135KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7b9c1f415847888a3c1b007f54171c8

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 101KB - Virtual size: 101KB

.data Size: 135KB - Virtual size: 161KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 101KB - Virtual size: 101KB

.data
Size: 135KB - Virtual size: 161KB

.rsrc
Size: 13KB - Virtual size: 12KB