c32b244e9e8984c2349346388687dd04ac1262c5921bdb18073cb3de301038df

General

Target

c32b244e9e8984c2349346388687dd04ac1262c5921bdb18073cb3de301038df
Size

109KB
MD5

2dbd66d66cee5c4a2c8e98d20e8edba0
SHA1

6888dad968757f232c852850d91523c8cd42a23e
SHA256

c32b244e9e8984c2349346388687dd04ac1262c5921bdb18073cb3de301038df
SHA512

53bc965b7566dc2b87cf0ed098d30b97c6b6dd412c4d747f553650bf9387e4c98e9d0884bebb2a83c2efae6ad83ea405b9c2868f87a99318e4275e8dca71d996
SSDEEP

3072:F5K8+jGod+t0IB6B0fPf0h2oR/PYsmNC9U449A59HsDWhy:F5ua+IVfPfkPYTC9UXmQ

Score

N/A

Malware Config

Signatures

Files

c32b244e9e8984c2349346388687dd04ac1262c5921bdb18073cb3de301038df
.exe windows x86

0c45f3b0f2ac80f582cbe69fcb1ea23f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetProcAddress
GetModuleHandleW
CloseHandle
Sleep
GetLastError
CreateFileA
GetCurrentProcessId
FileTimeToDosDateTime
FileTimeToLocalFileTime
GetFileAttributesExA
SetFileAttributesA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetModuleHandleA
SetUnhandledExceptionFilter
InterlockedCompareExchange
InterlockedExchange
UnhandledExceptionFilter

msvcrt

_open_osfhandle
ctime
time
_read
_write
_close
_lseek
remove
_strnicmp
_eof
_open
fclose
fprintf
fopen
_ftol2_sse
clock
atoi
setvbuf
_iob
_vsnprintf
_stat
_unlink
_errno
_mkdir
_tempnam
fwrite
fread
ferror
feof
tolower
__getmainargs
_cexit
_exit
_XcptFilter
_initterm
_amsg_exit
__setusermatherr
__p__commode
__p__fmode
__set_app_type
?terminate@@YAXXZ
_except_handler4_common
_controlfp
_ltoa_s
memset
isdigit
toupper
__doserrno
atol
strchr
strncmp
strspn
_stricmp
memcpy
strpbrk
printf
malloc
_strdup
free
exit
memmove

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

user32

CharNextExA

Sections

.text
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0c45f3b0f2ac80f582cbe69fcb1ea23f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

version

user32

Sections

.text Size: 82KB - Virtual size: 82KB

.data Size: 3KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 21KB - Virtual size: 24KB

.text
Size: 82KB - Virtual size: 82KB

.data
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 21KB - Virtual size: 24KB