373a7167d1877fbd74e3c03f68f5528b75bc55e3ed5d0a51e82bfbb39e7328ce

General

Target

373a7167d1877fbd74e3c03f68f5528b75bc55e3ed5d0a51e82bfbb39e7328ce
Size

84KB
MD5

504b4667c53012c83d159879beade560
SHA1

c3ff6081f51093dde28b63c8d7edc79293a49d1e
SHA256

373a7167d1877fbd74e3c03f68f5528b75bc55e3ed5d0a51e82bfbb39e7328ce
SHA512

38a9910cceaed6a7a7ce6e898dc2bea519494f04160ac245cb81d434a19c3eea58d796444ff8e1a8daeec17f189bf1c8809ecc21b903f473403e608326c5ae20
SSDEEP

1536:tV88yi8lxmP/Cvw8D9hgQUoaMaqC+lXyqknR5TH6ICi7VqJPBM5wJTt+DypHHns:78Ri8KP/a9qdXwlCqwjTC95aKtCypnns

Score

N/A

Malware Config

Signatures

Files

373a7167d1877fbd74e3c03f68f5528b75bc55e3ed5d0a51e82bfbb39e7328ce
.exe windows x86

06409fb3a391c10674eb4c2d03eaec61

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableW
SetDllDirectoryW
SetEnvironmentVariableW
ExpandEnvironmentStringsW
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DecodePointer
SetUnhandledExceptionFilter
EncodePointer
HeapSetInformation
InterlockedCompareExchange
Sleep
InterlockedExchange
IsDebuggerPresent

xul

XRE_StringToChildProcessType
XRE_InitChildProcess

mozalloc

moz_free
moz_xmalloc

msvcr100

_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
_initterm_e
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_invoke_watson
_controlfp_s
_crt_debugger_hook
_initterm
__winitenv
exit
_XcptFilter
_exit
_cexit
__wgetmainargs
_amsg_exit
wcslen
?terminate@@YAXXZ

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

06409fb3a391c10674eb4c2d03eaec61

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

xul

mozalloc

msvcr100

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 908B

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 68KB - Virtual size: 72KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 908B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 68KB - Virtual size: 72KB