d9b6b301c9bd64a3b152d495d5f40d9257c5c834f29d07b2a4592575b9067c78

General

Target

d9b6b301c9bd64a3b152d495d5f40d9257c5c834f29d07b2a4592575b9067c78
Size

446KB
MD5

6151d6df6f12f1ce53c1f961d94849f0
SHA1

2981d5cd741ab2859203540cca722090e29b51d4
SHA256

d9b6b301c9bd64a3b152d495d5f40d9257c5c834f29d07b2a4592575b9067c78
SHA512

6183993b45ba3825c45f9eda3b41ce54e23e80f94cc540a41234f46d93369e98f3b896482d7b1d3e65d90417bfeb56791571a99fe6b652ea44741e70db3cad4e
SSDEEP

6144:wjbw0p79jBEQInn6v8AbBkxSdUl7FFDgWBB6VCJ+95M9KcpOfWtyaB2mwyElgy3X:MvEQIn8B8UWBBob95SKsB2mGCFnKr

Score

N/A

Malware Config

Signatures

Files

d9b6b301c9bd64a3b152d495d5f40d9257c5c834f29d07b2a4592575b9067c78
.exe windows x86

e679f28a65eded925a34dd49caea35a5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpW
CloseHandle
ExitProcess
SetFilePointer
UnhandledExceptionFilter
GetStartupInfoA
GetModuleHandleW
DisableThreadLibraryCalls
CreateDirectoryA
GetLocaleInfoA
HeapFree
ReleaseMutex
VirtualProtect
GetSystemInfo
GetFileSize
GetOEMCP
SetConsoleCP
GetACP
InitializeCriticalSection
GetStringTypeW
GetModuleHandleA
lstrcpyA
HeapDestroy
GetCurrentProcess
CompareStringW
GetLastError
GetFileTime
InterlockedIncrement
GetVersion
GetCurrentThreadId
GetModuleFileNameW
CreateThread
FindClose
SetLastError
TerminateProcess
Sleep
CreateEventW
LeaveCriticalSection
GetFullPathNameW
HeapAlloc
TlsSetValue
SetConsoleCtrlHandler
RaiseException
DeleteCriticalSection
GetTickCount
HeapSize
FreeLibrary
HeapCreate
SetStdHandle
QueryPerformanceCounter

msvcrt

exit
isdigit
qsort
_amsg_exit
??1type_info@@UAE@XZ
_errno
wcstol

user32

DestroyWindow
SendMessageW
wsprintfA
TranslateMessage
UnregisterClassA
CreateWindowExA
SetDlgItemTextW
GetParent

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e679f28a65eded925a34dd49caea35a5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 52KB - Virtual size: 79KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 52KB - Virtual size: 79KB