73236619418056ba5aa33daea5cdcaf4a56310cd72fa8eadceaa20c408e340b5

Sharing

Copy URL Twitter E-mail

General

Target

73236619418056ba5aa33daea5cdcaf4a56310cd72fa8eadceaa20c408e340b5
Size

226KB
MD5

90eb759a4c47f8d9ca96e36ec55a3480
SHA1

5db4da6c9babb10ea0026abecef17d2899300fbe
SHA256

73236619418056ba5aa33daea5cdcaf4a56310cd72fa8eadceaa20c408e340b5
SHA512

02b25116f9fb30c8de299c6dc07b60f20de3d5f107d4f7aaea889aa01f7ffe821b87cc5da85ab0591c8e15b3292da106229b8f6013ed761df9c356157fe44ac8
SSDEEP

6144:wDZjOAXdvMf9XnwtL9KWeGJkq6hsKjSrgpP0b0:mjOKvMfp+L9KkL6Wgpcb

Score

N/A

Malware Config

Signatures

Files

73236619418056ba5aa33daea5cdcaf4a56310cd72fa8eadceaa20c408e340b5
.exe windows x86

8a3bade9974c9e180390f5598359a4d5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
SystemTimeToFileTime
lstrcpynA
LocalAlloc
FileTimeToLocalFileTime
FatalAppExitA
WaitForSingleObject
GetOverlappedResult
QueryPerformanceFrequency
FindFirstFileA
GetLocaleInfoW
SetProcessAffinityMask
HeapAlloc
ReadFile
TlsSetValue
UnhandledExceptionFilter
GetTimeZoneInformation
FreeEnvironmentStringsA
TerminateThread
CreateEventA
GlobalAlloc
DeleteFileA
GetProcAddress
SetEndOfFile
ResetEvent
LCMapStringA
FormatMessageA
SetConsoleCtrlHandler
GetSystemTimeAsFileTime
CompareStringA
QueueUserAPC
LoadLibraryA
DosDateTimeToFileTime
WideCharToMultiByte
GetEnvironmentStrings
GlobalReAlloc
CompareStringW
MultiByteToWideChar
ExitThread
GetEnvironmentStringsW
WriteFile
HeapReAlloc
CloseHandle
HeapFree
GetProcessHeap
GlobalUnlock
SetUnhandledExceptionFilter
SetStdHandle
GlobalMemoryStatus
FreeEnvironmentStringsW
GetCurrentProcessId
SearchPathA
WriteConsoleA
OpenMutexA
GetConsoleOutputCP
GetCPInfo
SetEvent
GetConsoleCP
GetVersion
SleepEx
TerminateProcess
CreateFileA
FindClose
TlsAlloc
ExpandEnvironmentStringsA
HeapSize
GetCurrentProcess
GetCurrentThread
FileTimeToSystemTime
GetConsoleMode
GetStdHandle
GetStartupInfoA
lstrcpyA
EnterCriticalSection
UnmapViewOfFile
GetComputerNameA
IsValidCodePage
GetLastError
GetSystemTime
WriteFileEx
WaitForMultipleObjects
QueryPerformanceCounter
RaiseException
GetUserDefaultLCID
GetTickCount
HeapDestroy
lstrcatA
WriteConsoleW
SleepEx
GetFileType
LCMapStringW
DeleteCriticalSection
GetModuleHandleA

ntdll

ZwMapViewOfSection
ZwCreateSection
ZwCreateEvent
ZwQuerySystemInformation
ZwQueryInformationThread

Sections

.text
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a3bade9974c9e180390f5598359a4d5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ntdll

Sections

.text Size: 172KB - Virtual size: 172KB

.data Size: 51KB - Virtual size: 50KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 172KB - Virtual size: 172KB

.data
Size: 51KB - Virtual size: 50KB

.rsrc
Size: 2KB - Virtual size: 4KB