a4be9f89256cb960f28a01980d827d5674de086f06d4018fe098945abeeb9151[.]exe

General

Target

a4be9f89256cb960f28a01980d827d5674de086f06d4018fe098945abeeb9151.exe
Size

75KB
MD5

7918a614a2c0f30c7f1db6ee1cb49e08
SHA1

81f27dd1fee271b51d253ca862d4712dbd5e2b78
SHA256

a4be9f89256cb960f28a01980d827d5674de086f06d4018fe098945abeeb9151
SHA512

d43a5733e524030a09f85bf8a1213a0987a2013566c50485a6625f80cc30265e70d18fedd2f1976b4198da1179e013093fd69515a4b16005c3d404d8d3555f90
SSDEEP

1536:uXtrjWm5jzP/aD6T1z+DA93nSxa6i/SjW:uVz5jL/hh4a6iaC

Score

N/A

Malware Config

Signatures

Files

a4be9f89256cb960f28a01980d827d5674de086f06d4018fe098945abeeb9151.exe
.exe windows x86

b066bde660bb7e81cbfd1625ebdd2907

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenProcess
lstrcmpiW
VirtualAlloc
VirtualFree
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
GetProcAddress
LoadLibraryW
GetFileAttributesW
ReadFile
SetEndOfFile
SetFileAttributesW
SetFilePointerEx
GetLastError
Wow64DisableWow64FsRedirection
Wow64RevertWow64FsRedirection
MoveFileExW
GetCommandLineW
GetEnvironmentVariableW
FindFirstVolumeW
FindNextVolumeW
FindVolumeClose
GetDriveTypeW
HeapFree
QueryDosDeviceW
SetFilePointer
GetVolumePathNamesForVolumeNameW
CreateIoCompletionPort
PostQueuedCompletionStatus
Sleep
WaitForMultipleObjects
GetCurrentProcess
GetCurrentProcessId
ExitProcess
CreateThread
GetCurrentThread
SetThreadPriority
SetPriorityClass
GetModuleFileNameW
lstrcatW
CopyFileW
MoveFileW
SetVolumeMountPointW
FindClose
FindFirstFileW
FindNextFileW
GetQueuedCompletionStatus
ExitThread
GetProcessHeap
HeapAlloc
GetFileSizeEx
lstrlenW
lstrcpyW
MulDiv
LocalFree
LocalAlloc
CloseHandle
WriteFile
GetLogicalDrives
CreateFileW
HeapReAlloc

user32

GetDC
DrawTextW
GetSystemMetrics
ReleaseDC
SystemParametersInfoW

gdi32

DeleteObject
CreateFontIndirectW
CreateDIBitmap
CreateCompatibleDC
GetDeviceCaps
GetDIBits
SelectObject
SetBkColor
SetBkMode
SetTextColor
DeleteDC

ole32

CoCreateInstance
CoInitializeEx

Sections

.rdata
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b066bde660bb7e81cbfd1625ebdd2907

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Sections

.rdata Size: 74KB - Virtual size: 74KB

.rdata
Size: 74KB - Virtual size: 74KB