f4d9d2f35f59dbe23297807d4d65faaef6cefc7a3ba9eb0d1c36701b55f8a212

General

Target

f4d9d2f35f59dbe23297807d4d65faaef6cefc7a3ba9eb0d1c36701b55f8a212
Size

200KB
MD5

4e2f70b809e47445e89879bb0af37a80
SHA1

9c8bf577e868afdc6bd0f2476643b19bb405fc8e
SHA256

f4d9d2f35f59dbe23297807d4d65faaef6cefc7a3ba9eb0d1c36701b55f8a212
SHA512

bca1580c370e681063b02fe875f54a134bc7f7c289986c082891c8c8c6d0fecd84adc357b0a971798372a962f94c32cd6e6f44e40011348274d609bad2ce513e
SSDEEP

3072:Lco78XJfNG7v9qrmEvyTcp/DAD+Nwap1vplUun+:TkG7vG3/cyCaXTUy+

Score

N/A

Malware Config

Signatures

Files

f4d9d2f35f59dbe23297807d4d65faaef6cefc7a3ba9eb0d1c36701b55f8a212
.exe windows x86

aaf8b2061fabc9dd23a01c5c4d52472a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

exit
_mktemp
__p__commode
_fgetwchar
__set_app_type
_initterm
_mbctoupper
__p__fmode
_except_handler3
__getmainargs
_ltow
_memicmp
_fpreset
_rmtmp
_fdopen
_aexit_rtn
_acmdln
_beginthreadex
perror
_controlfp
_ismbclower
_exit
_lock
_environ
isalpha
_wcsupr
_spawnlp
_XcptFilter
memcpy
_wsystem
_findfirst
isdigit
__setusermatherr
_adjust_fdiv
_utime64
tmpnam
_getwch
_beginthread
_adj_fdiv_m16i

kernel32

ReadProcessMemory
ExitThread
GetComputerNameW
SetLastError
GetNumberFormatA
VirtualFree
WaitForMultipleObjects
GetStartupInfoA
QueryPerformanceCounter
IsDebuggerPresent
LeaveCriticalSection
GetStdHandle
FileTimeToSystemTime
SetThreadAffinityMask
FindClose
QueryPerformanceFrequency
SetFilePointer
FormatMessageA
HeapAlloc
GlobalAddAtomA
IsBadStringPtrA
GetVersion
LoadResource
CreateFileA
GetEnvironmentStringsW
GetModuleHandleA
DeleteFileA
ResumeThread
SetEnvironmentVariableA

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aaf8b2061fabc9dd23a01c5c4d52472a

Headers

File Characteristics

Imports

msvcrt

kernel32

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 188KB - Virtual size: 188KB

.data Size: 512B - Virtual size: 8KB

.rsrc Size: 512B - Virtual size: 4B

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 188KB - Virtual size: 188KB

.data
Size: 512B - Virtual size: 8KB

.rsrc
Size: 512B - Virtual size: 4B