24aa1a852730b2e3257e10ca722e88b7ab42d9fa3c1c6c0d9ffeb25e26abae93

Sharing

Copy URL Twitter E-mail

General

Target

24aa1a852730b2e3257e10ca722e88b7ab42d9fa3c1c6c0d9ffeb25e26abae93
Size

46KB
MD5

683b7fff5b848b9c7399f03dc6817710
SHA1

4477a714afba9fd7208f10bace3f7a8fddf855c2
SHA256

24aa1a852730b2e3257e10ca722e88b7ab42d9fa3c1c6c0d9ffeb25e26abae93
SHA512

3c8044081eb35661c4ecd1bcbdda3a9d34110c2099eeffa6acf37e59a40722e2ac35943e3374655eb9eb3579cbc245d10a7d6b34e5e1adb6ed036fdb2b8a2855
SSDEEP

768:fStAbgNn/Xw4fsrs6rE7ZZc7gbrOtvUt2LnUdtVO7J0jPd/3Pplr9kZPdE52NeJg:6tsgV/PfsAd7ZZXbStvQ2w/G0Tt3PaZ5

Score

N/A

Malware Config

Signatures

Files

24aa1a852730b2e3257e10ca722e88b7ab42d9fa3c1c6c0d9ffeb25e26abae93
.exe windows x86

c0dcac3f5ebe5a3c502a3732c67d7e71

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemWindowsDirectoryW

Exports

Exports

RenameChange
?RenameCommand@@YGPAEPAXJ@Z
?RenameFortation@@YGPAEPAXJ@Z
?RenameHerbal@@YGPAEPAXJ@Z
?RenameLoadMac@@YGPAEPAXJ@Z
?RenameOptimize@@YGPAEPAXJ@Z
?RenameTest@@YGPAEPAXJ@Z

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.conas
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.const
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ts050
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts040
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts030
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts020
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts010
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c0dcac3f5ebe5a3c502a3732c67d7e71

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 25KB - Virtual size: 25KB

.conas Size: 512B - Virtual size: 64B

.const Size: 512B - Virtual size: 64B

.data Size: 2KB - Virtual size: 2KB

.ts050 Size: 1KB - Virtual size: 1KB

.ts040 Size: 2KB - Virtual size: 2KB

.ts030 Size: 3KB - Virtual size: 2KB

.ts020 Size: 2KB - Virtual size: 2KB

.ts010 Size: 3KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 3KB

.reloc Size: 2KB - Virtual size: 72KB

.text
Size: 25KB - Virtual size: 25KB

.conas
Size: 512B - Virtual size: 64B

.const
Size: 512B - Virtual size: 64B

.data
Size: 2KB - Virtual size: 2KB

.ts050
Size: 1KB - Virtual size: 1KB

.ts040
Size: 2KB - Virtual size: 2KB

.ts030
Size: 3KB - Virtual size: 2KB

.ts020
Size: 2KB - Virtual size: 2KB

.ts010
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 3KB

.reloc
Size: 2KB - Virtual size: 72KB