a1e7619990a2c15f9b1cfef5d28e73a2b65345b4fb745edc9c7023a95db828f6

General

Target

a1e7619990a2c15f9b1cfef5d28e73a2b65345b4fb745edc9c7023a95db828f6
Size

444KB
MD5

a11cf9c3f946c6c84822212f0e3e60a0
SHA1

54109b98a28bdac862fd823b9477ab3ca55f90fa
SHA256

a1e7619990a2c15f9b1cfef5d28e73a2b65345b4fb745edc9c7023a95db828f6
SHA512

1548b7b632621da22d6efe4a14a9199bfec60cc05599ef1f3c405ad2940f5a6787a46775c6ccfa957530b7b5f992adb39bd343836e56d9826aeba685b3db7297
SSDEEP

12288:XGBZ8M2LBTgT2VUSgG29fpFOmlnv91U0PTpB6:412LlYUUSIxn9v0mS

Score

N/A

Malware Config

Signatures

Files

a1e7619990a2c15f9b1cfef5d28e73a2b65345b4fb745edc9c7023a95db828f6
.exe windows x86

d270446a681c59d12c0b2ad0207036f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
VirtualAlloc
GetLastError
DeleteFileA
VirtualFree
ResumeThread
VirtualQuery
GetSystemInfo
VirtualProtect
GetLocaleInfoA
TerminateProcess
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsFree
SetLastError
TlsSetValue
TlsGetValue
TlsAlloc
HeapDestroy
HeapCreate
HeapFree
LoadLibraryA
LeaveCriticalSection
EnterCriticalSection
GetACP
GetOEMCP
GetCPInfo
HeapAlloc
InitializeCriticalSection
HeapReAlloc
RtlUnwind
HeapSize
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW

user32

LoadCursorA
DestroyWindow
LoadBitmapA
SetActiveWindow
GetFocus
EnableWindow

ole32

CoCreateInstance
CoInitialize
CoUninitialize

winmm

mmioRenameA
midiStreamRestart

dnsapi

DnsAcquireContextHandle_A

Exports

Exports

?V_T@@YAKK@Z

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 408KB - Virtual size: 869KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d270446a681c59d12c0b2ad0207036f7

Headers

File Characteristics

Imports

kernel32

user32

ole32

winmm

dnsapi

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 24KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 408KB - Virtual size: 869KB

.text
Size: 28KB - Virtual size: 24KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 408KB - Virtual size: 869KB