974f54225eb0bd9171ebde5ad8f7bac728b1591c6dfa1fbaec12a4e744ac81cc

Sharing

Copy URL Twitter E-mail

General

Target

974f54225eb0bd9171ebde5ad8f7bac728b1591c6dfa1fbaec12a4e744ac81cc
Size

316KB
MD5

5e6b1b87822cc8748d7fc582bea73a40
SHA1

5e93a8d742f08fa0881bf6512a644f3d8da3aa68
SHA256

974f54225eb0bd9171ebde5ad8f7bac728b1591c6dfa1fbaec12a4e744ac81cc
SHA512

e1d58c780a18fae2ca799f70a47e2e907414478b8689a442bba3203916a2420cf8375d86ec9a5976b4314673d0190e6b30c6e0610503b7d3ddcd0d0915aa2ff0
SSDEEP

6144:TewPZNVPBatREhlcYltfRTLSqb1nvT/8IeZncSzV:TvtByRGGYlryqpnlSnc8

Score

N/A

Malware Config

Signatures

Files

974f54225eb0bd9171ebde5ad8f7bac728b1591c6dfa1fbaec12a4e744ac81cc
.exe windows x86

2e0e05bb4be14e27b5350dc626f08677

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
CreateEventA
GetFileSize
CreateFileA
GetModuleHandleW
CreateFileW
GetACP
FreeEnvironmentStringsA
HeapReAlloc
GetVersionExW
ExitProcess
FormatMessageW
InterlockedCompareExchange
TlsGetValue
GetEnvironmentStringsW
CreateMutexW
GetOEMCP
GetModuleFileNameW
GetFileType
GetCurrentThread
CloseHandle
FlushFileBuffers
FileTimeToSystemTime
InterlockedExchange
GetVersionExA
FindResourceW
SetEnvironmentVariableA
FindFirstFileW
GetStringTypeW
CreateThread
QueryPerformanceCounter
GetEnvironmentStrings
TlsSetValue
GetCurrentProcessId
GetCommandLineW
GetTickCount
GetProcessHeap
CreateMutexA
GetStdHandle
VirtualAlloc
HeapFree
HeapAlloc
GetStartupInfoA
GetProcAddress
GetModuleHandleA
WriteFile
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
SetHandleCount
DeleteCriticalSection
TlsAlloc
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapDestroy
HeapCreate
VirtualFree
GetSystemTimeAsFileTime
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
SetConsoleCtrlHandler
FreeLibrary
LoadLibraryA
InitializeCriticalSection
GetCPInfo
Sleep
RtlUnwind
HeapSize
MultiByteToWideChar
GetLocaleInfoA
GetLocaleInfoW
LCMapStringA
LCMapStringW
GetStringTypeA
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetTimeZoneInformation
CompareStringA
CompareStringW

iphlpapi

GetIfTable

Sections

.text
Size: 280KB - Virtual size: 279KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e0e05bb4be14e27b5350dc626f08677

Headers

File Characteristics

Imports

kernel32

iphlpapi

Sections

.text Size: 280KB - Virtual size: 279KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 12KB - Virtual size: 9KB

.text
Size: 280KB - Virtual size: 279KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 12KB - Virtual size: 9KB