b5a98d56800cf4f15a35d3e8bcbc8c5295f3df0cac6e986c1be4ea520b678c46

General

Target

b5a98d56800cf4f15a35d3e8bcbc8c5295f3df0cac6e986c1be4ea520b678c46
Size

496KB
MD5

a235b8ce3767d1567da1e3753a7ed1f0
SHA1

4733cd7de3b3533ef02e4e030a98de1161bfe835
SHA256

b5a98d56800cf4f15a35d3e8bcbc8c5295f3df0cac6e986c1be4ea520b678c46
SHA512

03caa16b288f014a597945e1d95587b9542f34a556d34a3045013f4df967bc64bcb19d7c936977cef1abec66a8cd100abfa3c375901042b60f5c554a6be7b91a
SSDEEP

12288:kxsrURwbMe1TYrrJb48Ayn3dMeh2AByNZBbVWcAp3:LMe1kB4Xi353mBzA1

Score

N/A

Malware Config

Signatures

Files

b5a98d56800cf4f15a35d3e8bcbc8c5295f3df0cac6e986c1be4ea520b678c46
.exe windows x86

5c20a4176073abc94ebccfe69630411a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStringsA
InterlockedIncrement
LoadLibraryW
ReadFileEx
GetModuleFileNameA
InterlockedDecrement
lstrcpynA
EnterCriticalSection
OpenEventA
GetTickCount
OpenSemaphoreA
MapViewOfFile
SetEndOfFile
LCMapStringW
lstrcpynW
GlobalFree
SetEvent
ReleaseSemaphore
GetUserDefaultLangID
FindNextFileA
VirtualFree
lstrlenW
lstrlenA
OutputDebugStringA
CreateSemaphoreA
GetLastError
ReadFile
GetFileSize
FreeLibrary
WaitForSingleObjectEx
CreateDirectoryA
lstrcpyA
CreateThread
WriteFile
GlobalAlloc
GlobalFindAtomW
GetFileAttributesA
FindClose
GetProcAddress
FindFirstFileA
DeleteCriticalSection
WriteFileEx
lstrcpyn
GetSystemInfo
WaitForMultipleObjects
GetSystemDefaultLangID
UnmapViewOfFile
OpenMutexA
ResetEvent
CompareStringW
GetCPInfo
SetThreadPriority
SetFilePointer
CloseHandle
lstrcmpA
RemoveDirectoryA
LeaveCriticalSection
GetCurrentProcessId
lstrlen
GetDiskFreeSpaceA
CreateFileA

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 474KB - Virtual size: 474KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c20a4176073abc94ebccfe69630411a

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 5KB

.rsrc Size: 474KB - Virtual size: 474KB

.reloc Size: 512B - Virtual size: 332B

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 474KB - Virtual size: 474KB

.reloc
Size: 512B - Virtual size: 332B