5af354d292862f68ddb620384d2ac964cba7c11d283c074e161d1a5a110aaa38

Sharing

Copy URL Twitter E-mail

General

Target

5af354d292862f68ddb620384d2ac964cba7c11d283c074e161d1a5a110aaa38
Size

15KB
MD5

0aa84aa22d3ce7ce303a0d89a574f6f7
SHA1

d37f51369c34fc3f6dbc49d829f8265a53f21469
SHA256

5af354d292862f68ddb620384d2ac964cba7c11d283c074e161d1a5a110aaa38
SHA512

e938228e7f73938e418b6984cc493a128e69afeb6c9b3f85dc3fa3992da6fca5942e2633617f6a10635c6b9a8e5ba8e0d8e7ca45c6b3a057b477909102b0db52
SSDEEP

384:Kc+oHY1dGu0j4ANrT5vZELxa3YjQumKzFD:PFY1Aj0ANrHsxaQ/FD

Score

N/A

Malware Config

Signatures

Files

5af354d292862f68ddb620384d2ac964cba7c11d283c074e161d1a5a110aaa38
.exe windows x86

a443b17efcb2719c4ab7b5da37f8e939

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyW
GlobalAlloc
LoadLibraryExW
GetSystemTimeAsFileTime
InitializeCriticalSection
MultiByteToWideChar
CompareFileTime
LeaveCriticalSection
HeapFree
LoadLibraryW
CompareStringW
FormatMessageW
FlushInstructionCache
GetProcessHeap
GetProcAddress
SystemTimeToFileTime
SetUnhandledExceptionFilter
GetModuleHandleW
GetLastError
FindResourceW
GetDateFormatW
SetLastError
GetSystemWindowsDirectoryW
FreeLibrary
VirtualFree
WaitForMultipleObjectsEx
lstrcpynW
InterlockedDecrement
GetTimeFormatW
LoadResource
DeleteCriticalSection
Sleep
HeapAlloc
lstrcmpW
QueryPerformanceCounter
LoadLibraryA
SizeofResource
LocalFree
GlobalFree
lstrcmpiW
EnterCriticalSection
LocalAlloc
lstrlenA
GetCurrentProcessId
GetCommandLineW
GetCurrentThreadId
DnsHostnameToComputerNameW
lstrlenW
GetWindowsDirectoryW
InterlockedExchange
GlobalSize
TerminateProcess
UnhandledExceptionFilter
GetModuleFileNameW
LockResource
GetCurrentProcess
GetSystemDirectoryW
GetComputerNameW
InterlockedIncrement
SystemTimeToTzSpecificLocalTime
GlobalUnlock
GetTickCount
GlobalLock
VirtualAlloc
IsBadWritePtr

ole32

CoInitialize

mscat32

CryptCATOpen

Sections

.text
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a443b17efcb2719c4ab7b5da37f8e939

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

mscat32

Sections

.text Size: 512B - Virtual size: 396B

.data Size: - Virtual size: 80KB

.rsrc Size: 12KB - Virtual size: 11KB

.idata Size: 4KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 3KB

.text
Size: 512B - Virtual size: 396B

.data
Size: - Virtual size: 80KB

.rsrc
Size: 12KB - Virtual size: 11KB

.idata
Size: 4KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 3KB