1fae37c2dd66939b4d46a7c12b3fe7493b91230de9628c056e396f4076fdafbe

General

Target

1fae37c2dd66939b4d46a7c12b3fe7493b91230de9628c056e396f4076fdafbe
Size

2.2MB
MD5

98def25ec417de329fff4d7f9045c067
SHA1

357b750c77be2a549ba00b644ef3c7601933e614
SHA256

1fae37c2dd66939b4d46a7c12b3fe7493b91230de9628c056e396f4076fdafbe
SHA512

b475cd0132530874add4825bd290ec2d90cf4d6c175a71925e2e748bb2a5a7c0007314b2a2bd3d46f609a5189685f3e6146ed36992122a4b3679338e229435d6
SSDEEP

49152:NWgGkSMbHcTDhYpKD2aC0jH5yr7DWRyZlwH29vjDw:NxGkSE8vhYS24eimwH2R

Score

N/A

Malware Config

Signatures

Files

1fae37c2dd66939b4d46a7c12b3fe7493b91230de9628c056e396f4076fdafbe
.dll windows x86

ee9e53b274b9164b357b446fe2de6d09

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
GetProcessHeap
HeapAlloc
HeapReAlloc
VirtualFree
FreeLibrary
VirtualAlloc
VirtualProtect
GetProcAddress
LoadLibraryA
IsBadReadPtr
ExitProcess
CopyFileA
GetModuleFileNameA
RtlUnwind
RaiseException
GetCommandLineA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
WriteFile
IsBadWritePtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement
InterlockedIncrement

Exports

Exports

GetArphaCrashReport
GetArphaUtils
NvOptimusEnablement

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024KB - Virtual size: 1021KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee9e53b274b9164b357b446fe2de6d09

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 1.2MB - Virtual size: 1.2MB

.rsrc Size: 1024KB - Virtual size: 1021KB

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 1.2MB - Virtual size: 1.2MB

.rsrc
Size: 1024KB - Virtual size: 1021KB

.reloc
Size: 12KB - Virtual size: 9KB