95fb7dcf4f3e4ea31c1c5bc9507860a4a9c4d80543eb5fa386098b2becbd00ae

General

Target

95fb7dcf4f3e4ea31c1c5bc9507860a4a9c4d80543eb5fa386098b2becbd00ae
Size

280KB
MD5

6e50a859c7feaf35ccc1e45fe007d7d0
SHA1

b1835820536da526ad1a13b239b150284bcbe7db
SHA256

95fb7dcf4f3e4ea31c1c5bc9507860a4a9c4d80543eb5fa386098b2becbd00ae
SHA512

f200a4169ca2555b90776a931203c61c9bae37d08ef60db81f4ce3aac26cfdc9ae6e2f968a936e412487e4a9d78e6120933f4a406d70f195c78d98affcb663ad
SSDEEP

6144:b04qJ409BwUqi0WfAvilhQuzMCMomvndhC1/zfa:bVq79xFlAvipsvndhCZS

Score

N/A

Malware Config

Signatures

Files

95fb7dcf4f3e4ea31c1c5bc9507860a4a9c4d80543eb5fa386098b2becbd00ae
.exe windows x86

06ae14cc8d07016f3855c1b3e7982ece

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedDecrement
GetModuleHandleA
SuspendThread
VirtualLock
VirtualAlloc
VirtualProtect
GetLocaleInfoA
CloseHandle
SetStdHandle
LocalLock
InterlockedIncrement
SetFilePointer
GetStringTypeW
GetStringTypeA
ExitProcess
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapAlloc
HeapReAlloc
MultiByteToWideChar
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
GetACP
GetOEMCP
GetCPInfo
FlushFileBuffers
HeapSize
LCMapStringA
LCMapStringW
GetSystemInfo

ole32

CoInitialize

winscard

SCardGetCardTypeProviderNameW

avifil32

AVISaveA

ws2_32

select
send

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.efldfvs
Size: 184KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06ae14cc8d07016f3855c1b3e7982ece

Headers

File Characteristics

Imports

kernel32

ole32

winscard

avifil32

ws2_32

Sections

.text Size: 24KB - Virtual size: 22KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 56KB - Virtual size: 58KB

.efldfvs Size: 184KB - Virtual size: 182KB

.rsrc Size: 4KB - Virtual size: 24KB

.text
Size: 24KB - Virtual size: 22KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 56KB - Virtual size: 58KB

.efldfvs
Size: 184KB - Virtual size: 182KB

.rsrc
Size: 4KB - Virtual size: 24KB