e6221447df941d9948c093a1d071a42d438b77ab66c618e740f6b7dd2ea399e0

Sharing

Copy URL Twitter E-mail

General

Target

e6221447df941d9948c093a1d071a42d438b77ab66c618e740f6b7dd2ea399e0
Size

66KB
MD5

6d926161d88127251e42ece471b8f620
SHA1

42cbe94ead92305200f45ea944abc2d2d440dd55
SHA256

e6221447df941d9948c093a1d071a42d438b77ab66c618e740f6b7dd2ea399e0
SHA512

8dfacc9e15d75e0545a8d821e351fd6c724b881211db5a85060cd81556cee201e469d43dcbac378700a6f8c669d2eaf48e0ff412be1968b8b5aa8bbfc2fc97b5
SSDEEP

768:/EDLCnpSjPS4sLh1YrEHoSpJ3WHH1766R1ZDmMSuhH4XhZ2pqbKx4JzZCuJlbCG/:DpSHEISTUF601Z/mi4WXoSv

Score

N/A

Malware Config

Signatures

Files

e6221447df941d9948c093a1d071a42d438b77ab66c618e740f6b7dd2ea399e0
.exe windows x86

5d0530dec67800fdf5904df75adbbcf9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
VirtualAlloc
GetProcessHeap
GetACP
GetCurrentProcessId
GetTickCount
GetStringTypeW
FileTimeToSystemTime
InterlockedDecrement
GetCommandLineW
GetModuleFileNameW
GetModuleHandleW
CreateEventW
CreateThread
TlsGetValue
CreateFileW
DeleteFileW
SetStdHandle
InterlockedExchangeAdd
GetSystemInfo
TerminateProcess
GetCurrentThread
HeapFree
LockResource
GetModuleFileNameA
Sleep
SetFilePointer
GetFileType
SetEnvironmentVariableA
SizeofResource
LCMapStringW
HeapReAlloc
HeapAlloc
MultiByteToWideChar
HeapSize
RtlUnwind
IsValidCodePage
GetOEMCP
GetCPInfo
GetCurrentProcess
IsDebuggerPresent
UnhandledExceptionFilter
InterlockedIncrement
GetEnvironmentStringsW
GetLocaleInfoW
LoadLibraryW
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
GetProcAddress
ExitProcess
DecodePointer
WriteFile
GetStdHandle
FreeEnvironmentStringsW
WideCharToMultiByte
SetHandleCount
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
EncodePointer
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
GetLastError
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetSystemTimeAsFileTime
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
SetConsoleCtrlHandler
FreeLibrary
InterlockedExchange
IsProcessorFeaturePresent

ole32

StringFromCLSID
CoUninitialize
CoTaskMemFree
OleInitialize
OleRun
CoInitialize
OleFlushClipboard
CLSIDFromString

shell32

SHFileOperationW

iphlpapi

FlushIpNetTable

setupapi

SetupRemoveFromSourceListA

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d0530dec67800fdf5904df75adbbcf9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

shell32

iphlpapi

setupapi

Sections

.text Size: 54KB - Virtual size: 54KB

.data Size: 5KB - Virtual size: 8KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 54KB - Virtual size: 54KB

.data
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 6KB - Virtual size: 5KB