b104128795717666c2a248d556bff1a25e09e040b3aabc5470477355f9052bb2

General

Target

b104128795717666c2a248d556bff1a25e09e040b3aabc5470477355f9052bb2
Size

142KB
MD5

6781bca9590feb37aba0dc8b30838070
SHA1

daa5816124ef457e56e1c7e1b5e9f1f99a746f6e
SHA256

b104128795717666c2a248d556bff1a25e09e040b3aabc5470477355f9052bb2
SHA512

2a999fcafa0c9e33a4fe32a33198bc681edc4a51c5ec27500b9bc53f6709a821ef4521e7e38a69510e1d52e9bd6386be007268b0ced6b05978685e3436948b21
SSDEEP

3072:MdxcyUzjxVTlqfWql3gcGP/mU9iIXrc6FW3:qxcnzjEOql3gcGP/mU9iIXrc6FW3

Score

N/A

Malware Config

Signatures

Files

b104128795717666c2a248d556bff1a25e09e040b3aabc5470477355f9052bb2
.exe windows x64

1938af448c2960817ad6a46a79e92126

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

MapViewOfFile
Sleep
OpenFileMappingA
EnterCriticalSection
LeaveCriticalSection
ExitProcess
GetProcAddress
GetModuleHandleA
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
TlsAlloc
SetLastError
GetCurrentThreadId
GetLastError
TlsFree
TlsSetValue
TlsGetValue
RtlUnwindEx
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
WriteFile
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapSetInformation
HeapCreate
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetCPInfo
GetLocaleInfoA
GetACP
GetOEMCP
InitializeCriticalSection
FlushFileBuffers
LoadLibraryA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
LCMapStringA
LCMapStringW
SetFilePointer
CloseHandle
SetStdHandle
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

X8
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1938af448c2960817ad6a46a79e92126

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 30KB - Virtual size: 29KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 12KB

.pdata Size: 2KB - Virtual size: 2KB

X8 Size: 1KB - Virtual size: 1KB

.text
Size: 30KB - Virtual size: 29KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 12KB

.pdata
Size: 2KB - Virtual size: 2KB

X8
Size: 1KB - Virtual size: 1KB