dcbd2ba05b205b193b04a0f29ac4b9d787ca8b4da2fccad490b8918f5cde1fd2

General

Target

dcbd2ba05b205b193b04a0f29ac4b9d787ca8b4da2fccad490b8918f5cde1fd2
Size

73KB
MD5

f0f5267a4eea5ac5a13887c6b1b679ad
SHA1

36adfe10ce4ac99de8f32499f397d043a8b7a722
SHA256

dcbd2ba05b205b193b04a0f29ac4b9d787ca8b4da2fccad490b8918f5cde1fd2
SHA512

c2c79ba24900dec0892ac07ddd63e5b4c024ae5f7d8e159c96a79754e7715a4632410c126e4d5838f62aa713f1e462cfaae58c821237a4f9ea04c31c555615eb
SSDEEP

768:w9dP8yzFQK8MAL6PNYtRM+wbX8dlt3sPt6xgx+1RKesZGNZSFmTXSvsZGNZSFmTk:wnXIjLTRqry35FRKNENEFgXVENEFgX

Score

N/A

Malware Config

Signatures

Files

dcbd2ba05b205b193b04a0f29ac4b9d787ca8b4da2fccad490b8918f5cde1fd2
.exe windows x86

cd8cc221b300c7baae285aec178a84bf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
CreateProcessA
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
WideCharToMultiByte
GetLocaleInfoA
GetStartupInfoW
RaiseException
RtlUnwind
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetLastError
HeapFree
HeapAlloc
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
HeapSize
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage

shlwapi

PathRemoveFileSpecA

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd8cc221b300c7baae285aec178a84bf

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shlwapi

Sections

.text Size: 33KB - Virtual size: 32KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 3KB - Virtual size: 6KB

.rsrc Size: 20KB - Virtual size: 19KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 33KB - Virtual size: 32KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 3KB - Virtual size: 6KB

.rsrc
Size: 20KB - Virtual size: 19KB

.reloc
Size: 5KB - Virtual size: 5KB