80c759d0fb4775e85459c871aacd90ff344050baa9dcf9741bb8bfe2426b7356

General

Target

80c759d0fb4775e85459c871aacd90ff344050baa9dcf9741bb8bfe2426b7356
Size

50KB
MD5

91bedac364119b280d17c0538c2dcb5e
SHA1

605a234df34a629b602ea747cc6567c5547e9973
SHA256

80c759d0fb4775e85459c871aacd90ff344050baa9dcf9741bb8bfe2426b7356
SHA512

3dc40a7b2879beadd8af14d8843daa5f4d14bc5c3f5fe43bab46b24feec72fc1fc9fd155ff26ea39ef35731edf5ec5799bc49825b4afd72151bcfeb8ea44d0c0
SSDEEP

768:ngAScSqxGQrgNeTcPi9dv8YL4Nz2+GaS1B9SwsiQz/WziD8h5y7y:nLSyGEgNeTymdzu22EB9Swb2/yO7

Score

N/A

Malware Config

Signatures

Files

80c759d0fb4775e85459c871aacd90ff344050baa9dcf9741bb8bfe2426b7356
.exe windows x86

f997f669eade9924fb868be66f55fa15

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msi

ord40

kernel32

GetStartupInfoA
GetStringTypeA
LocalSize
LocalAlloc
GetEnvironmentStrings
GetVersionExA
GetCommandLineA
GetEnvironmentStringsW
GetTickCount
GetProcessVersion
GetPriorityClass
GetModuleHandleA
lstrcmpA
GetCurrentThread
SetFilePointer
GlobalAlloc
SetLastError
TryEnterCriticalSection
FreeLibrary
FindFirstFileA
MultiByteToWideChar
ReadFile
FindNextFileW
InterlockedExchange
FindCloseChangeNotification
DeleteCriticalSection
LocalFree
SizeofResource
GetModuleFileNameA
GetModuleHandleW
HeapAlloc
GetFileAttributesA
LoadLibraryA
WaitForSingleObject
LeaveCriticalSection
IsDebuggerPresent
GetCommandLineW
GetStringTypeW
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
InitializeCriticalSection
EnterCriticalSection
FatalAppExitA
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
IsBadWritePtr
GetProcAddress
LCMapStringA
LCMapStringW

Sections

.text
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f997f669eade9924fb868be66f55fa15

Headers

DLL Characteristics

File Characteristics

Imports

msi

kernel32

Sections

.text Size: 20KB - Virtual size: 24KB

.rdata Size: 3KB - Virtual size: 4KB

.data Size: 24KB - Virtual size: 36KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 20KB - Virtual size: 24KB

.rdata
Size: 3KB - Virtual size: 4KB

.data
Size: 24KB - Virtual size: 36KB

.rsrc
Size: 1024B - Virtual size: 4KB