21cd409dfe6031921a5c80831a9a9e6d0d3314645f6f8b7df7617ad4f4b997f0

General

Target

21cd409dfe6031921a5c80831a9a9e6d0d3314645f6f8b7df7617ad4f4b997f0
Size

189KB
MD5

67b9e31fe3befc752c75a8a7b047e390
SHA1

8d6ada58ac464a6aca8e39b0344ac7d1abb0a745
SHA256

21cd409dfe6031921a5c80831a9a9e6d0d3314645f6f8b7df7617ad4f4b997f0
SHA512

79b76aa24cb644dd0473233d708305e18479171d772712f16773ef006999f06b8696f28fd34420a0ae8cc01012f81ee991454b6fecea84d47050cd64a7007552
SSDEEP

3072:TSMb75bR48NCAxhn3dsautHrPPyKrm/vRo8:ZbNbfIKUbyKSV

Score

N/A

Malware Config

Signatures

Files

21cd409dfe6031921a5c80831a9a9e6d0d3314645f6f8b7df7617ad4f4b997f0
.exe windows x86

f1daadb81e72ac7b73ad7348634e3956

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
FreeLibrary
GetExitCodeProcess
OpenProcess
CloseHandle
LoadLibraryW
GetTickCount
Sleep
GetCurrentProcessId
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
CreateToolhelp32Snapshot
GetModuleFileNameA
Process32NextW
GetModuleHandleA
Process32FirstW
GetCurrentProcess
GetLastError
GetModuleFileNameW
GetCommandLineW
MapViewOfFile
UnmapViewOfFile
CreateFileMappingA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
ExitProcess
WriteFile
GetStdHandle
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetFileType
GetStartupInfoA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
SetFilePointer
FlushFileBuffers
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
LoadLibraryA
VirtualAlloc
HeapReAlloc
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA

Sections

.text
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f1daadb81e72ac7b73ad7348634e3956

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 68KB - Virtual size: 65KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 14KB

.rsrc Size: 84KB - Virtual size: 84KB

.text
Size: 68KB - Virtual size: 65KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 14KB

.rsrc
Size: 84KB - Virtual size: 84KB