27b12e4ac0c0fa9ba47818db149f15f12144196958ac7739fc5fc4de476fd559

General

Target

27b12e4ac0c0fa9ba47818db149f15f12144196958ac7739fc5fc4de476fd559
Size

154KB
MD5

98a0d0485535965308e137ef9fc868fd
SHA1

7bcc3a56f4c387e494a1b355e5507bfb947b6736
SHA256

27b12e4ac0c0fa9ba47818db149f15f12144196958ac7739fc5fc4de476fd559
SHA512

dc0adcfbea4fb47cb6b755e618b0e83a876ff4b987dcbc80829ed13a70bca2be436518616f8ae4341ea42ff7e52b5bdd4f41cd9568b9d9202bb2a9310f028489
SSDEEP

1536:yDrYOHP61TcqFgrPgLwSUu3L0BuCmiorNO4OzGPqyv8Rvha4C+e3yPseMVhF:y3PM32zQrIBuCmPRA6qxRpaB+zYhF

Score

N/A

Malware Config

Signatures

Files

27b12e4ac0c0fa9ba47818db149f15f12144196958ac7739fc5fc4de476fd559
.exe windows x86

56747fee1629e9d5dc9ee9e3ef6c592c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_mbctolower
_wunlink
_tzname
_commit
_sleep
_ismbcupper
__setusermatherr
_atoi64
ungetc
_logb
_getw
_tolower
__set_app_type
_wasctime
_putch
_except_handler3
_exit
_mbsicmp
rename
fscanf
_environ
_wcsnset
_XcptFilter
_initterm
__p__commode
_wtempnam
_daylight
_aligned_free
_purecall
_wexecl
memcpy
exit
_wfindfirsti64
_vscwprintf
_acmdln
_winver
_outpw
__getmainargs
__p__fmode
_ismbcspace
_ismbcpunct
_pclose
_ismbcdigit
_wsearchenv
iswspace
wcsspn
wcscpy
vfwprintf
_tell
_adjust_fdiv
sqrt
_controlfp
memmove

kernel32

HeapReAlloc
GetCurrentThreadId
CreateEventW
FindClose
GetModuleHandleA
GetProcessWorkingSetSize
GetTickCount
HeapFree
VirtualAlloc
GetComputerNameW
ExpandEnvironmentStringsA
lstrcatA
OpenEventA
UnmapViewOfFile
CreateThread
CreateFileMappingA
DuplicateHandle
WideCharToMultiByte
GetCurrentProcess
GetProcAddress
GetStartupInfoA
IsValidCodePage
FreeLibrary
GetEnvironmentStrings
FindFirstFileA
HeapAlloc
EnterCriticalSection
HeapCreate
FreeEnvironmentStringsA

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 102B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 184B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56747fee1629e9d5dc9ee9e3ef6c592c

Headers

File Characteristics

Imports

msvcrt

kernel32

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 137KB - Virtual size: 137KB

.data Size: 512B - Virtual size: 102B

.rsrc Size: 512B - Virtual size: 184B

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 137KB - Virtual size: 137KB

.data
Size: 512B - Virtual size: 102B

.rsrc
Size: 512B - Virtual size: 184B