1e1cf2b51e9961415d8e9a4311c5576b68fddc3b7c9749f1953420f433463b80

General

Target

1e1cf2b51e9961415d8e9a4311c5576b68fddc3b7c9749f1953420f433463b80
Size

181KB
MD5

5b2226afc3f04c9a77b00989a7f2e8f0
SHA1

13dcfd1d5affd381084af7f13244e9747a17f110
SHA256

1e1cf2b51e9961415d8e9a4311c5576b68fddc3b7c9749f1953420f433463b80
SHA512

00f7564dcc8fd9a7168b6c9d0ae66d098b03e7d00d88ae92c5a0b2a6e4851b71541e00bc296fa402a83b742ddaee408806380b4500463550ad988e8a103658cb
SSDEEP

1536:IBBnloK3AzI67kXqcgiIVKSroBI1t0lAJ6xM/QfTCpN+QnCXDN6/fg8/slWDYMnW:IBBnjI4qcar2WylAIxxfQuzEgQwOpc

Score

N/A

Malware Config

Signatures

Files

1e1cf2b51e9961415d8e9a4311c5576b68fddc3b7c9749f1953420f433463b80
.exe windows x86

08f53eeb49ee1b47b526fc54a1db9cfc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
DisconnectNamedPipe
SetLastError
GetFileSizeEx
CreateFileW
LocalAlloc
GetModuleFileNameW
GetTickCount
GetStringTypeW
MultiByteToWideChar
LCMapStringW
IsProcessorFeaturePresent
WideCharToMultiByte
ExitProcess
HeapReAlloc
RtlUnwind
IsValidCodePage
GetLastError
HeapFree
GetCommandLineW
HeapSetInformation
GetStartupInfoW
EncodePointer
DecodePointer
HeapAlloc
RaiseException
HeapCreate
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetProcAddress
GetModuleHandleW
WriteFile
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
Sleep
HeapSize
LeaveCriticalSection
EnterCriticalSection
LoadLibraryW
GetCPInfo
GetACP
GetOEMCP

user32

PostMessageW
UpdateWindow
LoadIconW
LoadCursorW
RegisterClassW
FindWindowW
ShowWindow

gdi32

CreateFontW

winhttp

WinHttpGetDefaultProxyConfiguration
WinHttpCreateUrl

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

08f53eeb49ee1b47b526fc54a1db9cfc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winhttp

Sections

.text Size: 19KB - Virtual size: 19KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 79KB - Virtual size: 85KB

.rsrc Size: 71KB - Virtual size: 70KB

.text
Size: 19KB - Virtual size: 19KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 79KB - Virtual size: 85KB

.rsrc
Size: 71KB - Virtual size: 70KB