941d2ce20d5e2cbba75b8f0bf3d600e1fbe9ddeee7825240ca06a742790e14bf

General

Target

941d2ce20d5e2cbba75b8f0bf3d600e1fbe9ddeee7825240ca06a742790e14bf
Size

292KB
MD5

505c87409c45092db6620d026fa5f270
SHA1

0097e0b41a21ff576df04ea9416951633c889d07
SHA256

941d2ce20d5e2cbba75b8f0bf3d600e1fbe9ddeee7825240ca06a742790e14bf
SHA512

bdbfa0dc3a8bccc7a98e03825e6eb3b779320bfb7d7cfbc207a4c54bb5cca8b96478f1a27e7699e95cca012ad569c0a687b9ea5b2bbbf301a80dc35667007545
SSDEEP

6144:xWVAOehtUEBuFn+ckdpmoL7xBEF92vfXEp5vJMEw3xQpLb5+tg9:xZOehtxBuVipm07x092vfXEvhS3KxCg9

Score

N/A

Malware Config

Signatures

Files

941d2ce20d5e2cbba75b8f0bf3d600e1fbe9ddeee7825240ca06a742790e14bf
.exe windows x86

38dbcc8516d6f698edeedf699e9f8efb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
WideCharToMultiByte
GetProcAddress
GetModuleHandleW
HeapAlloc
GetModuleHandleA
GetCommandLineA
HeapFree
GetVersionExA
GetProcessHeap
GetStartupInfoA
RaiseException
DebugBreak
IsDebuggerPresent
MultiByteToWideChar
LoadLibraryA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate
WriteFile
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FreeLibrary
InitializeCriticalSection
RtlUnwind
VirtualQuery
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameW
Sleep
GetCPInfo
GetACP
GetOEMCP
HeapSize
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 234KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

38dbcc8516d6f698edeedf699e9f8efb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 50KB - Virtual size: 50KB

.data Size: 6KB - Virtual size: 10KB

.rsrc Size: 234KB - Virtual size: 308KB

.text
Size: 50KB - Virtual size: 50KB

.data
Size: 6KB - Virtual size: 10KB

.rsrc
Size: 234KB - Virtual size: 308KB