1716db479ec2a83802ef604c631378d0e268ab434a0f4371089a424c393c5f51

General

Target

1716db479ec2a83802ef604c631378d0e268ab434a0f4371089a424c393c5f51
Size

100KB
MD5

90cc06b9a97c2cd90e042d4aaf50d8e0
SHA1

542fe18857c2a89bb1304b4e6f23082a6189ebc1
SHA256

1716db479ec2a83802ef604c631378d0e268ab434a0f4371089a424c393c5f51
SHA512

626e2cae4ba29e3b9248f2e0dadf6037e5444fb0a38cea542e3eea6b5af3d14f43c41996a70c958b0b9ac41d734ad8858d9a2802b7e9837610eb9f9d3a58c485
SSDEEP

1536:HrX34px/NVnj7+ciTt5E6a7jBYpZTvsjqpd5osDY68pPHh5oP2nq5:T34zWciTtNsjBS10jnsMtLzq

Score

N/A

Malware Config

Signatures

Files

1716db479ec2a83802ef604c631378d0e268ab434a0f4371089a424c393c5f51
.exe windows x86

692881c9a86b8a6a1fbd80be76120c2c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetTempPathW
VirtualProtect
GetProcAddress
InterlockedExchange
GetTickCount
CreateEventA
VirtualAlloc
LoadLibraryA
Sleep
GetSystemInfo
GetLocaleInfoA
RtlUnwind
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
GetACP
GetOEMCP
GetCPInfo
HeapAlloc
HeapReAlloc
HeapSize
QueryPerformanceCounter
GetCurrentThreadId
VirtualQuery

user32

ShowWindow
LoadImageW
SendMessageA
EnableWindow

ws2_32

send

winmm

midiInPrepareHeader
joyGetDevCapsA

Exports

Exports

?EnumWindowsProc@@YIHKK@Z

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

692881c9a86b8a6a1fbd80be76120c2c

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

winmm

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 2KB

.tls Size: 8KB - Virtual size: 6KB

.rsrc Size: 56KB - Virtual size: 52KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 2KB

.tls
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 56KB - Virtual size: 52KB