a1d490edad530a1ccaa8cd8fcfa6577f0aa3878b2f9048388ecb435f2146cb94

General

Target

a1d490edad530a1ccaa8cd8fcfa6577f0aa3878b2f9048388ecb435f2146cb94
Size

851KB
MD5

50a069ba2516e7650631780c06dd72e0
SHA1

40e7f63a0d671592ee52e4c991a124c1c9164d9f
SHA256

a1d490edad530a1ccaa8cd8fcfa6577f0aa3878b2f9048388ecb435f2146cb94
SHA512

a4b8179a84b5944c4947e5587a7d5d8c9fa1f1d5fd779d6e23e003036d88f33c8c739c4552ba45875669a82e5564fe45ac071172bdb8d73e3cb3ba63f366eea4
SSDEEP

12288:YultpZFzofK3gXe0f7a0FRr33J6bmRAofDi:YgpgXVa0FRr33pRAkm

Score

N/A

Malware Config

Signatures

Files

a1d490edad530a1ccaa8cd8fcfa6577f0aa3878b2f9048388ecb435f2146cb94
.exe windows x86

c16855a52330a56efc61702c9b928ebb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedDecrement
GetExitCodeProcess
GetCurrentThread
GetExitCodeThread
CreateFileA
GetShortPathNameA
FindFirstFileA
GetFileSize
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
GetProcAddress
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapAlloc
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
IsBadWritePtr
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedIncrement
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
VirtualAlloc
GetFileType
Sleep
RaiseException
LocalFree
lstrlenA

advapi32

RegQueryValueA
RegCloseKey

user32

GetParent
AllowSetForegroundWindow
BringWindowToTop
GetClientRect
RegisterClassA
AnimateWindow
GetSysColor
CreateWindowExA
UpdateWindow
DefWindowProcA
PostQuitMessage
IsWindowUnicode
IsZoomed
ShowWindowAsync
GetWindowTextLengthA
GetTitleBarInfo

ws2_32

WSAHtons

oleaut32

SysAllocString
SysFreeString
VariantClear

Sections

.text
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 776KB - Virtual size: 776KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c16855a52330a56efc61702c9b928ebb

Headers

File Characteristics

Imports

kernel32

advapi32

user32

ws2_32

oleaut32

Sections

.text Size: 61KB - Virtual size: 61KB

.rdata Size: 776KB - Virtual size: 776KB

.data Size: 12KB - Virtual size: 15KB

.text
Size: 61KB - Virtual size: 61KB

.rdata
Size: 776KB - Virtual size: 776KB

.data
Size: 12KB - Virtual size: 15KB