55ee9715a7cae460f20cbd23b5772516f25d27a3427d4fe13ac03ff65c9a16ff

General

Target

55ee9715a7cae460f20cbd23b5772516f25d27a3427d4fe13ac03ff65c9a16ff
Size

424KB
MD5

81894a5c265bca1285dffcbe18196dc0
SHA1

945cf948e1fd3e4f384568a675a481fb064b9d9d
SHA256

55ee9715a7cae460f20cbd23b5772516f25d27a3427d4fe13ac03ff65c9a16ff
SHA512

a07408c724fb817de61997d16b3be58ec86bcd674c18057b2143db454ed39de3450f7820f21e3766abfcf5e99c9e02c50b440df6dd30fb58b8d9fa4f737d6282
SSDEEP

6144:jx9ypaauqrnHgHzJJffhXqFBvFjfgptkRJmRdWsx77e8zfkbOigSLZ:jEaauQinRUBNLJ2W8zRRSl

Score

N/A

Malware Config

Signatures

Files

55ee9715a7cae460f20cbd23b5772516f25d27a3427d4fe13ac03ff65c9a16ff
.exe windows x86

ed3f5dffc91de4390ac440cca43ad488

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetProcessHeap
InterlockedDecrement
GetTickCount
GetACP
GetCommandLineA
ExitProcess
WaitForSingleObjectEx
TerminateProcess
QueryPerformanceCounter
GetVersionExA
GetCurrentProcessId
Sleep
GetModuleHandleW
HeapAlloc
IsDebuggerPresent
WaitForSingleObject
GetCurrentProcess
FreeLibrary
GetCommandLineW
GetCurrentThread
CompareStringW
CompareStringA
GetVersionExW
GetEnvironmentStrings
GetTimeZoneInformation
IsValidCodePage
HeapFree
GetStartupInfoA
GetProcAddress
GetModuleHandleA
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
HeapDestroy
HeapCreate
VirtualFree
GetSystemTimeAsFileTime
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
SetUnhandledExceptionFilter
SetConsoleCtrlHandler
InterlockedExchange
LoadLibraryA
InitializeCriticalSection
GetCPInfo
GetOEMCP
HeapReAlloc
RtlUnwind
HeapSize
MultiByteToWideChar
GetLocaleInfoA
GetLocaleInfoW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
SetEnvironmentVariableA

shell32

SHFileOperationW

iphlpapi

FlushIpNetTable

scarddlg

ord2

Sections

.text
Size: 412KB - Virtual size: 412KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ed3f5dffc91de4390ac440cca43ad488

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shell32

iphlpapi

scarddlg

Sections

.text Size: 412KB - Virtual size: 412KB

.data Size: 6KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 412KB - Virtual size: 412KB

.data
Size: 6KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 4KB