00cc5eb29470ac555fe6c89ece69bea4cf9b771d4c612410f3ac81bc0253a3b5

General

Target

00cc5eb29470ac555fe6c89ece69bea4cf9b771d4c612410f3ac81bc0253a3b5
Size

274KB
MD5

68b4cd2902eaa5de482a7e7513dafe8f
SHA1

8649cf77da9e1e9a1f4dc55206693cad80ddb597
SHA256

00cc5eb29470ac555fe6c89ece69bea4cf9b771d4c612410f3ac81bc0253a3b5
SHA512

adae1e95b63c471ca2609e4d4c79b3143923ddc0343db0fabf70395d348a3555d2d5564dbe2659eb675d38c125090f39d5e421341ef188b2c34113f2302cb582
SSDEEP

3072:+SXeWqqBOlWrqA3Q5wfqA3ZK88GsQFcAtIODA86lEOoHlbFHqlytLdNmbR/28Sba:+Q2e7Rpc4D6SHVFHqlsQ28AISRjM

Score

N/A

Malware Config

Signatures

Files

00cc5eb29470ac555fe6c89ece69bea4cf9b771d4c612410f3ac81bc0253a3b5
.exe windows x86

63d9afba7dedfa7acc1f6656cdfa71ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
FileTimeToLocalFileTime
FileTimeToSystemTime
SetEndOfFile
GetStringTypeW
GetStringTypeA
LCMapStringW
CreateFileA
CompareStringW
CompareStringA
InterlockedExchange
InitializeCriticalSection
SetFilePointer
VirtualQuery
GetSystemInfo
VirtualProtect
VirtualAlloc
VirtualFree
HeapDestroy
GetEnvironmentStringsW
GetEnvironmentStrings
GetOEMCP
SetEnvironmentVariableW
SetEnvironmentVariableA
FlushFileBuffers
TlsGetValue
TlsFree
TlsAlloc
ReadFile
WriteFile
SetHandleCount
HeapFree
HeapReAlloc
HeapAlloc
GetVersionExA
GetFileAttributesA
MultiByteToWideChar
GetModuleHandleA
FindClose
FindNextFileA
GetExitCodeThread
GetCommandLineA
CreateProcessA
QueryPerformanceFrequency
GetModuleFileNameA
GetFullPathNameA
GetCurrentDirectoryA
GetSystemDirectoryW
InterlockedDecrement
InterlockedIncrement
SetLastError
SetEvent
EnterCriticalSection
LeaveCriticalSection
GetVersionExW
InitializeCriticalSectionAndSpinCount
GetLastError
GetProcessHeap
OpenEventW
ExitProcess
CreateThread
CreateEventW
WaitForSingleObject
CloseHandle
ExitThread
OpenProcess
GetModuleHandleW
UnhandledExceptionFilter
QueryPerformanceCounter
LocalAlloc
LocalFree
Sleep

msvcrt

malloc
wcsrchr
wcslen
strcmp

rpcrt4

RpcMgmtSetServerStackSize
RpcRevertToSelf
RpcImpersonateClient
RpcRaiseException
RpcServerRegisterIf2
RpcServerRegisterAuthInfoW

Sections

.text
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63d9afba7dedfa7acc1f6656cdfa71ff

Headers

File Characteristics

Imports

kernel32

msvcrt

rpcrt4

Sections

.text Size: 40KB - Virtual size: 36KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 8KB - Virtual size: 161KB

.rsrc Size: 48KB - Virtual size: 46KB

.text
Size: 40KB - Virtual size: 36KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 8KB - Virtual size: 161KB

.rsrc
Size: 48KB - Virtual size: 46KB