12996bbd1a27542824380ae047e5977be8d9ded7c52e8d6646d2d05b696c58fa

Sharing

Copy URL

Twitter E-mail

General

Target

12996bbd1a27542824380ae047e5977be8d9ded7c52e8d6646d2d05b696c58fa
Size

92KB
MD5

619024e912ee69878516f319242bf990
SHA1

f4d68e413c4d82d3429b4a70c01154be126f1878
SHA256

12996bbd1a27542824380ae047e5977be8d9ded7c52e8d6646d2d05b696c58fa
SHA512

4eae561896d04f1f315fc4ebc2311f5d9e48550c4e7b8748f8b5800cb911a5100e70b850f34a5db31c8248e53c945cf7f552da9bceec5139e2b8b3d7af51cc5d
SSDEEP

1536:vkGNg2oLMq2mfi+YcmlFdqRnpvqt8J93A9LbwYXIDDsetbxtw+mzjLj3I:v1a11glGRQtQA9LbTXIUwbxtw+OHj

Score

N/A

Malware Config

Signatures

Files

12996bbd1a27542824380ae047e5977be8d9ded7c52e8d6646d2d05b696c58fa
.exe windows x86

d4e41e5ce305824c95feb7c111f808d5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
FindNextFileA
GetLastError
MoveFileExA
FindFirstFileA
GetTimeZoneInformation
GetModuleHandleA
WideCharToMultiByte
GetConsoleOutputCP
MultiByteToWideChar
GetTempFileNameA
GetTempPathA
DeleteFileA
FileTimeToSystemTime
DosDateTimeToFileTime
GlobalAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
ExitProcess
GetProcAddress
GetFileAttributesA
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
CloseHandle
GetACP
GetOEMCP
GetCPInfo
Sleep
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
GetStringTypeW
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
LCMapStringA
LCMapStringW
LoadLibraryA
HeapReAlloc
RtlUnwind
InterlockedExchange
SetStdHandle
FlushFileBuffers
CreateFileA
SetFilePointer
ReadFile
SetEndOfFile
GetLocaleInfoW
SetThreadUILanguage

user32

CharPrevA
LoadStringA

ws2_32

WSAStartup
gethostbyname
gethostname
gethostbyaddr
inet_addr

Sections

.text
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

iwkjugl
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d4e41e5ce305824c95feb7c111f808d5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ws2_32

Sections

.text Size: 51KB - Virtual size: 51KB

.data Size: 3KB - Virtual size: 21KB

.rsrc Size: 36KB - Virtual size: 37KB

iwkjugl Size: - Virtual size: 4KB

.text
Size: 51KB - Virtual size: 51KB

.data
Size: 3KB - Virtual size: 21KB

.rsrc
Size: 36KB - Virtual size: 37KB

iwkjugl
Size: - Virtual size: 4KB