f1b07a2f489171169737a5af7a676b90fc8f25e22442ea40e6e6b121715fb5e5

General

Target

f1b07a2f489171169737a5af7a676b90fc8f25e22442ea40e6e6b121715fb5e5
Size

124KB
MD5

01a07609ccbfa16c5c8917ed49a40267
SHA1

e03aa6e89c9d1735860f1a951b436e4804445f3e
SHA256

f1b07a2f489171169737a5af7a676b90fc8f25e22442ea40e6e6b121715fb5e5
SHA512

c257d5869d206248990878a1880ed09ac3f7fd3cbddd62b77a891313fa8a7f7f6965ebf43e7bd0521ce3afd0063b16479bdade1bfcc313ea687236ac34198632
SSDEEP

3072:skuIlyvKl7uhvzaifxv1ZwhFAvS/LHSHgXHl0KBsXsD:T4EuhOipkFAvS/L5XF9yXsD

Score

N/A

Malware Config

Signatures

Files

f1b07a2f489171169737a5af7a676b90fc8f25e22442ea40e6e6b121715fb5e5
.exe windows x86

c812ba7d45e8b80b24855f8c9ed05769

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedDecrement
LCMapStringW
LCMapStringA
GetSystemInfo
VirtualProtect
GetLocaleInfoA
GetCPInfo
GetOEMCP
GetACP
LoadLibraryA
GetLastError
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
LocalFree
RtlUnwind
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapAlloc
RaiseException
HeapFree
GetProcAddress
TerminateProcess
GetCurrentProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
HeapSize
SetUnhandledExceptionFilter
InterlockedExchange
VirtualQuery
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW

advapi32

RegCreateKeyExA
RegSetValueExA

ole32

CoUninitialize
CoInitializeEx
CoCreateInstance
CoSetProxyBlanket

oleaut32

VariantInit
VariantClear
SysFreeString
SysAllocString

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ordata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c812ba7d45e8b80b24855f8c9ed05769

Headers

File Characteristics

Imports

kernel32

advapi32

ole32

oleaut32

Sections

.text Size: 32KB - Virtual size: 29KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 3KB

.ordata Size: 76KB - Virtual size: 76KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 3KB

.ordata
Size: 76KB - Virtual size: 76KB