50bc7f06c3b0457a6d5d7429e4d7d9862bad985b03d29f71590d31519a773455

General

Target

50bc7f06c3b0457a6d5d7429e4d7d9862bad985b03d29f71590d31519a773455
Size

200KB
MD5

598ece767bbfcbb50fab930f73181328
SHA1

03855c129c067f1e6a9c3c988e55dbf2b564654b
SHA256

50bc7f06c3b0457a6d5d7429e4d7d9862bad985b03d29f71590d31519a773455
SHA512

c740679bc815b796f94f08c878e8b4aaa965a68d5fe8d608c97c420b9c39612b1bd42e596194504f67279e90478a40dbd19ceece699a7b5dc9ecd64c5187bb2b
SSDEEP

3072:+YVOmdfNQBihJt7rR5gq20ZM4CtBRKTTMGCPDb4EPt05nwiYsNkYzMqUMAiNIYqz:+K7BR9s0Z67bRl0ZTDNkYgq31Gz

Score

N/A

Malware Config

Signatures

Files

50bc7f06c3b0457a6d5d7429e4d7d9862bad985b03d29f71590d31519a773455
.exe windows x86

f9826c617f98a696161949569127abe3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
VirtualProtect
VirtualFree
CloseHandle
ReadFile
CreateFileA
GetModuleHandleA
VirtualAlloc
GetModuleFileNameA
HeapAlloc
GetCommandLineA
HeapSetInformation
GetStartupInfoW
GetModuleHandleW
ExitProcess
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW
HeapCreate
EncodePointer
GetLastError
HeapFree
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
LoadLibraryW
UnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
Sleep
RtlUnwind
HeapSize
LCMapStringW
MultiByteToWideChar
GetStringTypeW
HeapReAlloc

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9826c617f98a696161949569127abe3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 23KB - Virtual size: 23KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 3KB - Virtual size: 6KB

.rsrc Size: 512B - Virtual size: 436B

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 3KB - Virtual size: 6KB

.rsrc
Size: 512B - Virtual size: 436B