50a1645c125056585366faf0acbfe8ff41659acb8859650a01c2ed5cb4af124f

General

Target

50a1645c125056585366faf0acbfe8ff41659acb8859650a01c2ed5cb4af124f
Size

375KB
MD5

90eb137bbab46944b0883c4e8edfb8b9
SHA1

8321e60cc13e0cec3ff75b70740eea491c819e62
SHA256

50a1645c125056585366faf0acbfe8ff41659acb8859650a01c2ed5cb4af124f
SHA512

84bb5741e87614d163d4ebf8a5bea7b85517d46ea8d5e6728670ddb82fa2570cc287639a124f4dc8a435ca5290ec06a660e4f486dc5e39c1384d605b7d202190
SSDEEP

6144:D73toQL6Qsi1FPGASHdfG3+INIxvkNW0+0iz2pEbt3WlwdHXDIEHbv:vGAEi3lSHduZUYW0npgt9r

Score

N/A

Malware Config

Signatures

Files

50a1645c125056585366faf0acbfe8ff41659acb8859650a01c2ed5cb4af124f
.exe windows x86

e28f990ee8270f68098343875aea0b4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MapViewOfFile
CreateThread
lstrlenW
DeleteFileW
FreeLibrary
GetProcAddress
CreateToolhelp32Snapshot
GetWindowsDirectoryW
FindClose
SystemTimeToFileTime
GetSystemTime
UnmapViewOfFile
TerminateProcess
CreateMutexW
OutputDebugStringA
LocalFree
SetEnvironmentVariableW
ExpandEnvironmentStringsW
LoadLibraryExW
GetFileAttributesW
ReadProcessMemory
WaitForSingleObject
CloseHandle
ReleaseMutex
SetEvent
UnhandledExceptionFilter
GetCurrentProcess
GetCommandLineA
GetTickCount
SetUnhandledExceptionFilter
GetSystemDirectoryW
VirtualProtect
CreateFileW
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetVersion
ExitProcess
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
VirtualAlloc
HeapReAlloc
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

advapi32

DeregisterEventSource
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
RegCloseKey
ReportEventW
RegisterEventSourceW
RegOpenKeyExW
CheckTokenMembership
AllocateAndInitializeSid
FreeSid

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 328KB - Virtual size: 641KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e28f990ee8270f68098343875aea0b4a

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 40KB - Virtual size: 39KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 328KB - Virtual size: 641KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 328KB - Virtual size: 641KB

.rsrc
Size: 3KB - Virtual size: 3KB