449f03ac90be00b4bd9445306374639fcba6830ba50da23ecbf73b42e0bcf595

General

Target

449f03ac90be00b4bd9445306374639fcba6830ba50da23ecbf73b42e0bcf595
Size

80KB
MD5

7d115310c10a369a1378645c5e52e570
SHA1

de70eb567b1227f7553dc506dd20eeaa35e4d889
SHA256

449f03ac90be00b4bd9445306374639fcba6830ba50da23ecbf73b42e0bcf595
SHA512

df52e18446f0de01f8356df929f4fdac9d0d2e7c43bcd92bfc751aef988f443126fa7a6dd7483e4b82ffa1b325591a57a0b21bddcfc7019ad5678ec695365375
SSDEEP

1536:nFTNhKHBj8AEZO7dKnvZZFxwwv45wcwINLO4gQGCHUQyXwg:nFTW8AEZjZZf0fwMJLs9

Score

N/A

Malware Config

Signatures

Files

449f03ac90be00b4bd9445306374639fcba6830ba50da23ecbf73b42e0bcf595
.exe windows x86

d43c54357d762537b33d96f90308dac3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetModuleHandleA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetCurrentProcessId
WaitForSingleObject
FreeConsole
WritePrivateProfileStringA
OpenProcess
CloseHandle
GetLastError
CreateMutexA
Sleep
GetProcAddress
LoadLibraryA
GetCommandLineA
SetErrorMode

user32

SendMessageA

mfc42

ord1575
ord561
ord815
ord1200
ord2915
ord860
ord800
ord2818
ord537
ord4160
ord540

msvcrt

_XcptFilter
exit
__p___initenv
__getmainargs
_initterm
_exit
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_onexit
__dllonexit
atoi
strtol
sprintf
__CxxFrameHandler
__setusermatherr

msvcp60

?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d43c54357d762537b33d96f90308dac3

Headers

File Characteristics

Imports

kernel32

user32

mfc42

msvcrt

msvcp60

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 792B

.rsrc Size: 4KB - Virtual size: 144B

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 792B

.rsrc
Size: 4KB - Virtual size: 144B

.rmnet
Size: 60KB - Virtual size: 60KB