d56b38745664a799c5c2313bb3bbd2644881b3037b451629c749ff6948bf47c5

Sharing

Copy URL

Twitter E-mail

General

Target

d56b38745664a799c5c2313bb3bbd2644881b3037b451629c749ff6948bf47c5
Size

588KB
MD5

51c204c9336625d7332fab8cd3349cd2
SHA1

74a01ccd0353ce445c32bfd3c43b0ef54410fb8f
SHA256

d56b38745664a799c5c2313bb3bbd2644881b3037b451629c749ff6948bf47c5
SHA512

387b48362ddf4535782e9e1d5b8b6a7113ab67952bc2b1c4e5e2333e69208f46c73591ba47f66a30836c3f70b58d9cc79353769092761d5eef8aba2bb280cbe3
SSDEEP

12288:qvN0f0Q8//b3IVPW3vjKWpe5z4LeDuUl8eDuUl7cl89jL/:eN0f0Q5PUjrpe58LRO1D

Score

N/A

Malware Config

Signatures

Files

d56b38745664a799c5c2313bb3bbd2644881b3037b451629c749ff6948bf47c5
.exe windows x86

2057721aacfc73de3adce683b162ce8a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
GetModuleHandleA
GetFileAttributesA
GetFullPathNameA
GetModuleFileNameA
GlobalAddAtomA
GlobalDeleteAtom
GetTickCount
GetCurrentThreadId
FindClose
FindNextFileA
FindFirstFileA
GetWindowsDirectoryA
lstrcmpA
LoadLibraryA
FreeLibrary
GetCurrentProcess
GetProcAddress
SetLastError
LockResource
LoadResource
FindResourceExA
FindResourceA
Sleep
InitializeCriticalSection
DeleteCriticalSection
CloseHandle
QueryPerformanceFrequency
QueryPerformanceCounter
GetTempPathA
CreateFileA
OutputDebugStringA
WriteFile
GetVersionExA
LocalFree
FormatMessageA
GetSystemDefaultLangID
GetUserDefaultLangID
WideCharToMultiByte
GetCurrentDirectoryA
GetEnvironmentVariableA
GetShortPathNameA
GetSystemDirectoryA
GetLocaleInfoA
HeapAlloc
HeapFree
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
CreateProcessA
GetStartupInfoA
MultiByteToWideChar
FlushFileBuffers
GetDriveTypeA
lstrcatA
CompareFileTime
GetFileSize
GetFileTime
OpenFile
GetPrivateProfileStringA
WritePrivateProfileStringA
CreateMutexA
OpenMutexA
ReleaseMutex
GlobalUnlock
GlobalLock
lstrcpyA
GlobalFindAtomA
lstrcmpiA
GlobalGetAtomNameA
GetVersion
InterlockedDecrement
InterlockedIncrement
lstrlenA
GetCurrentThread
lstrcpynA
LocalAlloc
MulDiv
ReadFile
SetFilePointer
SetEndOfFile
GetLastError
GlobalFlags
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GetOEMCP
SetErrorMode
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
TerminateProcess
GetCommandLineA
RaiseException
HeapReAlloc
HeapSize
GetACP
SetStdHandle
GetFileType
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
GetStringTypeA
GetStringTypeW
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
InterlockedExchange

Sections

.text
Size: 248KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 40KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.1rdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2057721aacfc73de3adce683b162ce8a

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 248KB - Virtual size: 244KB

.rdata Size: 44KB - Virtual size: 40KB

.data Size: 40KB - Virtual size: 116KB

.rsrc Size: 180KB - Virtual size: 179KB

.1rdata Size: 72KB - Virtual size: 72KB

.text
Size: 248KB - Virtual size: 244KB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 40KB - Virtual size: 116KB

.rsrc
Size: 180KB - Virtual size: 179KB

.1rdata
Size: 72KB - Virtual size: 72KB