f052dd21eec6d0d4d771ab2c0e5deadf1c3547ad06ea3cf2ffa06851d8a80b72

General

Target

f052dd21eec6d0d4d771ab2c0e5deadf1c3547ad06ea3cf2ffa06851d8a80b72
Size

83KB
MD5

7d55909302dbbd75dad2035a40993b50
SHA1

78f10385b3311129feca6ce58c55eef1eb89d408
SHA256

f052dd21eec6d0d4d771ab2c0e5deadf1c3547ad06ea3cf2ffa06851d8a80b72
SHA512

895e8ff8d18ad4c8e1b3c1ffdb9075c714e42e9378dd61e741001d9881b5634e0a90584e92fcf4d62c4e0f5fdab3eae07f1e645b814fe2f799ed5e4138180731
SSDEEP

1536:pH1GhVlxjO4jdf05IrsKbrug1931yOGY6AI5Xp0YI4nNQdS:pVyBO4jR0OAWug1934lV5XK4udS

Score

N/A

Malware Config

Signatures

Files

f052dd21eec6d0d4d771ab2c0e5deadf1c3547ad06ea3cf2ffa06851d8a80b72
.exe windows x86

865b3532976f77948a579691454e6542

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
GetProcessHeap
GetSystemDirectoryW
GetLastError
GetProcAddress
VirtualAlloc
GetWindowsDirectoryW
GetTickCount
GetStringTypeW
MultiByteToWideChar
LCMapStringW
HeapReAlloc
HeapSize
WideCharToMultiByte
RtlUnwind
GetModuleHandleW
GetComputerNameW
WaitForSingleObject
GetCPInfo
GetCommandLineW
HeapFree
HeapAlloc
HeapSetInformation
GetStartupInfoW
HeapCreate
ExitProcess
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW
EncodePointer
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
UnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
LeaveCriticalSection
EnterCriticalSection
LoadLibraryW
Sleep
GetACP
GetOEMCP
IsValidCodePage
VirtualQuery

user32

LoadBitmapA
GetForegroundWindow
GetWindowLongW
GetDesktopWindow
IsIconic

Sections

.tet
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rd~ta
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

dat
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

865b3532976f77948a579691454e6542

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.tet Size: 21KB - Virtual size: 20KB

rd~ta Size: 8KB - Virtual size: 8KB

dat Size: 3KB - Virtual size: 7KB

.rsrc Size: 49KB - Virtual size: 49KB

.tet
Size: 21KB - Virtual size: 20KB

rd~ta
Size: 8KB - Virtual size: 8KB

dat
Size: 3KB - Virtual size: 7KB

.rsrc
Size: 49KB - Virtual size: 49KB