e5aff85f25b7ae36448363d89b14e7ac8b4433df2b1a78d032a81d0bd846a3d1

General

Target

e5aff85f25b7ae36448363d89b14e7ac8b4433df2b1a78d032a81d0bd846a3d1
Size

233KB
MD5

91f4c0c2de8483e5753c79dfa5ed3a5c
SHA1

139259670278d35337175bbf0df792f04f393d43
SHA256

e5aff85f25b7ae36448363d89b14e7ac8b4433df2b1a78d032a81d0bd846a3d1
SHA512

a11fef757567cc02c8c99c2bdeaf1c8d1609d0bcb1c5e3e2ffb4ea52ddc1937f1b823b69c49b0310d9ebb19467ccc88b6f311afc538ffd3955ad153db120bd19
SSDEEP

6144:6kDuRmOBi1Hnn+f64GK8s34wAwfEurJH2hW:6k6RmyA1UBBffrx2E

Score

N/A

Malware Config

Signatures

Files

e5aff85f25b7ae36448363d89b14e7ac8b4433df2b1a78d032a81d0bd846a3d1
.exe windows x86

91b8cd241d65c6043340c85a198158c1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
VirtualProtectEx
OpenProcess
CompareFileTime
UnlockFileEx
WriteFileEx
VirtualAlloc
GetFileInformationByHandle
GetExitCodeThread
DeleteFileA
WriteFile
IsDebuggerPresent
VirtualQuery
GetPrivateProfileIntA
CreateFileMappingA
GetDriveTypeA
LocalFileTimeToFileTime
ExitProcess
GetTempPathA
TlsGetValue
SetEvent
SetUnhandledExceptionFilter
GetVolumeInformationA
GetProcAddress
LoadLibraryA
SetFileAttributesA
InitializeCriticalSection
MapViewOfFile
MapViewOfFileEx
FreeLibrary
GetOverlappedResult
SetStdHandle
SetLastError
GetThreadSelectorEntry
GetACP
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCPInfo
GetOEMCP
HeapAlloc
HeapReAlloc
LCMapStringA
LCMapStringW

Sections

.text
Size: 217KB - Virtual size: 217KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

91b8cd241d65c6043340c85a198158c1

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 217KB - Virtual size: 217KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 9KB - Virtual size: 74KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 217KB - Virtual size: 217KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 9KB - Virtual size: 74KB

.rsrc
Size: 2KB - Virtual size: 2KB