5532b9c28925c52a553564e05c1a7b240ddb2f86edd2cb82523f8774e3d33d0d

Sharing

Copy URL Twitter E-mail

General

Target

5532b9c28925c52a553564e05c1a7b240ddb2f86edd2cb82523f8774e3d33d0d
Size

388KB
MD5

44316fb3f57e1e9c5a23aafe5b589de0
SHA1

2313d4f4300da0eebbc8f9daccf1824541b6b963
SHA256

5532b9c28925c52a553564e05c1a7b240ddb2f86edd2cb82523f8774e3d33d0d
SHA512

1621267abbbad569a1b8568dc22b6346d4d1c2113af49e2bbe77be259015e62816bf6e3a3c6b5f1c9b6bbe43208cbf1c2f915b86835e814e21d619762b870263
SSDEEP

6144:W+6SZxDUhH9fS51JrfB3+pM5aIOqLVJ5bbZXegqw48gyH0YtnbvK/kFZj:nxYhJ61Jrp3/alWJtbZU8JFtrymB

Score

N/A

Malware Config

Signatures

Files

5532b9c28925c52a553564e05c1a7b240ddb2f86edd2cb82523f8774e3d33d0d
.exe windows x86

2bf155c4f8aa4a3fe70e756cabf62a6e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
CreateEventA
CloseHandle
ResetEvent
WaitForSingleObject
DeleteFileA
SetEvent
Sleep
InterlockedDecrement
SetFilePointerEx
WriteFile
ReadFile
CreateFileW
FlushFileBuffers
GetLastError
GetFileAttributesExW
WideCharToMultiByte
MultiByteToWideChar
FormatMessageA
lstrlenA
HeapFree
GetProcessHeap
SetEndOfFile
GetLocaleInfoW
LoadLibraryA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
CreateFileA
InitializeCriticalSectionAndSpinCount
IsValidLocale
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoA
HeapAlloc
RtlUnwind
RaiseException
GetCPInfo
InterlockedIncrement
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
SetFilePointer
GetModuleFileNameA
ExitProcess
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
GetModuleHandleA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
InitializeCriticalSection

ole32

CoCreateInstance
CoInitializeSecurity
CoUninitialize
CoInitializeEx
CLSIDFromProgID

oleaut32

SysFreeString
VariantInit
VariantClear
SysAllocString

Sections

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�d�
Size: 239KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2bf155c4f8aa4a3fe70e756cabf62a6e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

oleaut32

Sections

.text Size: 116KB - Virtual size: 116KB

.rdata Size: 23KB - Virtual size: 23KB

.data Size: 6KB - Virtual size: 13KB

.rsrc Size: 2KB - Virtual size: 1KB

�d� Size: 239KB - Virtual size: 240KB

.text
Size: 116KB - Virtual size: 116KB

.rdata
Size: 23KB - Virtual size: 23KB

.data
Size: 6KB - Virtual size: 13KB

.rsrc
Size: 2KB - Virtual size: 1KB

�d�
Size: 239KB - Virtual size: 240KB