574d113f1c34243c8a125ad2172f35527e4f68d706ae72a864263d1e1549739e

General

Target

574d113f1c34243c8a125ad2172f35527e4f68d706ae72a864263d1e1549739e
Size

584KB
MD5

6858ce3d2adcdd7e5bd4e5e738c31050
SHA1

f7e5733d0d735bf0e41b92842ff849d77afaf31a
SHA256

574d113f1c34243c8a125ad2172f35527e4f68d706ae72a864263d1e1549739e
SHA512

271bed12d8af1b3f851042694baee566789726dda0921712aef6d24e762d824be0e5face9adff4bbde599b1545f1be19b3516bf50a55d1bd7c4ad97e187c47db
SSDEEP

12288:JjgAhJFvPUtEF8FthQW4LQY9vmzRjntHkm9x4WlSR:J0AhzvPUtEAQW4skv2114W

Score

N/A

Malware Config

Signatures

Files

574d113f1c34243c8a125ad2172f35527e4f68d706ae72a864263d1e1549739e
.exe windows x86

e0462fa4e86790a6f7381a23e1c397f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CreateDirectoryA
SetEndOfFile
CreateFileA
HeapFree
ExitProcess
RtlUnwind
RaiseException
GetModuleHandleA
GetCommandLineA
GetVersionExA
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
GetCPInfo
HeapAlloc
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
GetACP
GetOEMCP
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
SetUnhandledExceptionFilter
WriteFile
FlushFileBuffers
GetProcAddress
TerminateProcess
GetCurrentProcess
SetFilePointer
CloseHandle
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
GetLocaleInfoA
VirtualProtect
GetSystemInfo
VirtualQuery
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
HeapSize
IsBadReadPtr
IsBadCodePtr
LoadLibraryA
InterlockedExchange
SetStdHandle
ReadFile
GetLocaleInfoW

shell32

SHGetSpecialFolderPathA
ShellExecuteA

shlwapi

PathRemoveFileSpecA
PathAppendA

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 508KB - Virtual size: 1.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e0462fa4e86790a6f7381a23e1c397f8

Headers

File Characteristics

Imports

kernel32

shell32

shlwapi

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 9KB

.vmp0 Size: 508KB - Virtual size: 1.6MB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 9KB

.vmp0
Size: 508KB - Virtual size: 1.6MB