e7598a8d586ea0e2dbe93c0b96cb5e0cd8e125ee9b07ee48d4e7495309f4c875

Sharing

Copy URL Twitter E-mail

General

Target

e7598a8d586ea0e2dbe93c0b96cb5e0cd8e125ee9b07ee48d4e7495309f4c875
Size

227KB
MD5

0c46509eed226d098cbf98b5fb633975
SHA1

6d85be459a3438c8b1c5d147eeb3ea2942101b73
SHA256

e7598a8d586ea0e2dbe93c0b96cb5e0cd8e125ee9b07ee48d4e7495309f4c875
SHA512

12dff6d99160ff459289c7f71edb016735854f2d5e16657ce962b5d19c4847b0d6cf364502c5663f67276317cf5de83726afb2b12051842fda5081bd6c40a045
SSDEEP

6144:XuZFtBG7rYwnzH0cW+mmcyuydiL02oiAlxJY9Czk/s:X02t0V+mmO1L02oHlLYGws

Score

N/A

Malware Config

Signatures

Files

e7598a8d586ea0e2dbe93c0b96cb5e0cd8e125ee9b07ee48d4e7495309f4c875
.exe windows x86

20b86462d46e92e29538aa4d01f35b3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

ZwCreateEvent
ZwQueryInformationThread
NtQuerySystemInformation
NtCreateSection

kernel32

FreeEnvironmentStringsA
SetEnvironmentVariableA
SearchPathA
TlsFree
SetUnhandledExceptionFilter
GetConsoleCP
SystemTimeToFileTime
GetTickCount
InitializeCriticalSectionAndSpinCount
FreeLibrary
CreateFileA
lstrcpynA
GlobalFree
GetCurrentThread
Sleep
MapViewOfFileEx
TlsSetValue
TlsAlloc
SetFilePointer
ExitThread
GetDateFormatA
ResetEvent
GlobalMemoryStatus
SetStdHandle
LCMapStringW
GlobalAlloc
GetSystemTime
LoadLibraryA
CompareStringA
GetProcessHeap
EnumSystemLocalesA
ResumeThread
GetComputerNameA
SetEndOfFile
MultiByteToWideChar
VirtualFree
FreeEnvironmentStringsW
DeviceIoControl
LocalFree
GetEnvironmentVariableA
ReadFile
FileTimeToSystemTime
DeleteCriticalSection
DeleteFileA
SleepEx
GlobalReAlloc
HeapReAlloc
lstrcpyA
HeapDestroy
GetStdHandle
GetEnvironmentStringsW
SetProcessAffinityMask
GetConsoleMode
GetStringTypeW
GetLocaleInfoA
RtlUnwind
QueryPerformanceFrequency
WaitForMultipleObjects
GetCurrentProcessId
GlobalUnlock
GetSystemTimeAsFileTime
CreateEventA
FileTimeToLocalFileTime
SetHandleCount
FatalAppExitA
IsDebuggerPresent
GetFileType
WriteConsoleA
GetOEMCP
GetLastError
UnmapViewOfFile
FindClose
SetConsoleCtrlHandler
GetOverlappedResult
LCMapStringA
GetModuleHandleW
IsValidLocale
EnterCriticalSection
WideCharToMultiByte
CreateThread
GetSystemDirectoryA
WriteFile
OpenMutexA
GetProcAddress
GetCommandLineA
ExitProcess
TerminateThread
WriteConsoleW
WaitForSingleObject
GetCommandLineW
GetFileSize
GetEnvironmentStrings
GetTimeFormatA
FormatMessageA
VirtualAlloc

Sections

.text
Size: 183KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20b86462d46e92e29538aa4d01f35b3a

Headers

DLL Characteristics

File Characteristics

Imports

ntdll

kernel32

Sections

.text Size: 183KB - Virtual size: 183KB

.data Size: 41KB - Virtual size: 40KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 183KB - Virtual size: 183KB

.data
Size: 41KB - Virtual size: 40KB

.rsrc
Size: 2KB - Virtual size: 4KB