3045f439b34ed030bcd215184018212e34b259f1b6b83f9282a1aaca750919ab

Sharing

Copy URL Twitter E-mail

General

Target

3045f439b34ed030bcd215184018212e34b259f1b6b83f9282a1aaca750919ab
Size

157KB
MD5

a3b9d2694d46c7af0d912aef3c957a1c
SHA1

5da7a45f580d228de62d601ab17ce98d12f5de37
SHA256

3045f439b34ed030bcd215184018212e34b259f1b6b83f9282a1aaca750919ab
SHA512

c10b3e4652e6295ce57eb59190ca6dcea1a0ccf1224148019a1e20e686b50e992b4cb11b1d3473d857993994e3812bb0ee4631e1b5defb3a01cc3b5fbf357488
SSDEEP

1536:14s66lynaYhjwk0ycSb1nB/QQ9Q4EjoyhhVqJ8XcRNH1YIwIM1b53mpE1DD1:XT8jCyv/rB+MJ8MRNHaIfMN53mpgDJ

Score

N/A

Malware Config

Signatures

Files

3045f439b34ed030bcd215184018212e34b259f1b6b83f9282a1aaca750919ab
.exe windows x86

bfb55460213f87c602c5395f5075f08d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
GetProcAddress
GetModuleHandleW
lstrcatW
WinExec
InterlockedIncrement
InterlockedDecrement
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
GetLastError
HeapFree
GetCommandLineW
HeapSetInformation
GetStartupInfoW
RtlUnwind
HeapAlloc
LCMapStringW
MultiByteToWideChar
GetCPInfo
RaiseException
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapCreate
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
ExitProcess
WriteFile
GetConsoleCP
GetConsoleMode
SetFilePointer
ReadFile
FlushFileBuffers
CloseHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
HeapReAlloc
LoadLibraryW
WriteConsoleW
SetStdHandle
CreateFileA
CreateFileW
SetEndOfFile
GetProcessHeap

Sections

.text
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bfb55460213f87c602c5395f5075f08d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 74KB - Virtual size: 74KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 5KB - Virtual size: 13KB

.rsrc Size: 48KB - Virtual size: 48KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 74KB - Virtual size: 74KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 5KB - Virtual size: 13KB

.rsrc
Size: 48KB - Virtual size: 48KB

.reloc
Size: 7KB - Virtual size: 7KB