3bd0b8babda3d069a3636145e1d77e2be395b163d13c61935b78a599e523a13e

General

Target

3bd0b8babda3d069a3636145e1d77e2be395b163d13c61935b78a599e523a13e
Size

295KB
MD5

64cdbbf618600981e9be12d53de013e2
SHA1

500265883a6db53056cc562adee2e3363ad97d9d
SHA256

3bd0b8babda3d069a3636145e1d77e2be395b163d13c61935b78a599e523a13e
SHA512

fa74d1376f54f82d412aeb9dc7ef16171c89b8557063a7f795f460a68823968a68c5b0fd278872e992d6b8f508c9970c63b94a81ad25141a5ddf9557606d937b
SSDEEP

3072:ayZLDea1eiptRMqvfAl9oTTNSf1rwDN7sjn+pe1Q:aELDeUeivv4KNSSp4ru

Score

N/A

Malware Config

Signatures

Files

3bd0b8babda3d069a3636145e1d77e2be395b163d13c61935b78a599e523a13e
.exe windows x86

b2da232f12d2ea3d9625b1281a4c4f36

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OutputDebugStringW
GetModuleHandleW
GetTickCount
VirtualFree
GetSystemDirectoryW
WideCharToMultiByte
GetModuleFileNameW
FlushInstructionCache
OpenMutexW
GetLastError
GetProcAddress
VirtualAlloc
LoadLibraryA
GetSystemInfo
GetCurrentProcess
GetWindowsDirectoryW
GetVersion
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
lstrlenA
GetComputerNameA
GetModuleHandleA
ExitProcess
GetStartupInfoW
SetUnhandledExceptionFilter
Sleep
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
HeapFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
VirtualQuery

user32

GetWindowTextLengthW
IsIconic
IsZoomed
LoadBitmapA
wsprintfW
GetForegroundWindow
GetDesktopWindow
LoadBitmapW
IsWindowVisible
LoadCursorA

advapi32

RegOpenKeyExW
RegOpenKeyExA
GetUserNameA

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2da232f12d2ea3d9625b1281a4c4f36

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 234KB - Virtual size: 233KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 234KB - Virtual size: 233KB