4ed1cd52c5b4b52806cd627f85459615496c7ea3d5dbf20cffa5bfde882e8355

General

Target

4ed1cd52c5b4b52806cd627f85459615496c7ea3d5dbf20cffa5bfde882e8355
Size

176KB
MD5

362864ae8a93c0544c1be05ace4a3b10
SHA1

e21393c133e1d58e5839e0725b1868bb68319067
SHA256

4ed1cd52c5b4b52806cd627f85459615496c7ea3d5dbf20cffa5bfde882e8355
SHA512

a04ba261d5e40e31e129f720ba9a4b19b5e806823880b731e832fe3bd5f466461a38845902aec458765e6b6f1c64831ca7da9a29ae32625f445f82ec6c9c2552
SSDEEP

3072:OBeUfwjs6nTNX5zVKCiXoaf4wfy+QxuNM85mdG62xE2NuKIetaVuqv:OBlfwnnTNX5JEv48FQxcM85mdwJNHY

Score

N/A

Malware Config

Signatures

Files

4ed1cd52c5b4b52806cd627f85459615496c7ea3d5dbf20cffa5bfde882e8355
.exe windows x86

141206ba1d0e18bd3ec2a68175f127e6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
VirtualProtect
VirtualFree
GetProcAddress
LoadLibraryA
IsBadReadPtr
HeapAlloc
GetProcessHeap
HeapFree
FreeLibrary
Sleep
HeapReAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
IsBadWritePtr
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
RtlUnwind
InterlockedDecrement
InterlockedIncrement
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCurrentThread
WriteFile
GetCPInfo
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
LocalAlloc
InterlockedExchange
RaiseException
LocalFree

Exports

Exports

Ip

Sections

.text
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

141206ba1d0e18bd3ec2a68175f127e6

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 40KB

.data Size: 104KB - Virtual size: 102KB

.idata Size: 4KB - Virtual size: 1KB

.rsrc Size: 16KB - Virtual size: 14KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 44KB - Virtual size: 40KB

.data
Size: 104KB - Virtual size: 102KB

.idata
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 16KB - Virtual size: 14KB

.reloc
Size: 4KB - Virtual size: 3KB