c6aa02f52b33b87dd4042c52f9242f8a6cd8fc5a14f246f32179bec30dc2df0c

General

Target

c6aa02f52b33b87dd4042c52f9242f8a6cd8fc5a14f246f32179bec30dc2df0c
Size

116KB
MD5

83b1a0f95c2588ba7d4a2431c38680e0
SHA1

91ed94c5b75ee09044f8c10780a57a358d2130da
SHA256

c6aa02f52b33b87dd4042c52f9242f8a6cd8fc5a14f246f32179bec30dc2df0c
SHA512

472ed21c7bf2ac3fb7f28a41eb9bbbdb1218b5c6f135c4d6a02813e794ef59553d29763e10156104a555ec2801fa61312f750aff603d54b6df0b8308a4082ff8
SSDEEP

1536:J3fe0oG1e9ilkaczF2GPjQfdPQS4veQRRcodNS20nHTfcC2xleLX5EcW7H6RMNUC:ro1zacJZPj24veQnG20Hzcru5ER7y7c

Score

N/A

Malware Config

Signatures

Files

c6aa02f52b33b87dd4042c52f9242f8a6cd8fc5a14f246f32179bec30dc2df0c
.exe windows x86

309aff62f4f0470b9f5821d80847268d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
TerminateThread
GetModuleHandleA
GetProcAddress
GetTickCount
GetLocalTime
VirtualAllocEx
GetLastError
RemoveDirectoryA
GetSystemInfo
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
ExitProcess
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapAlloc
HeapFree
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
HeapSize
LCMapStringA
MultiByteToWideChar
LCMapStringW
VirtualQuery

user32

ReleaseDC
LoadCursorA

winscard

SCardCancel

Exports

Exports

?LORPE01@@YAKK@Z

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

309aff62f4f0470b9f5821d80847268d

Headers

File Characteristics

Imports

kernel32

user32

winscard

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 84KB - Virtual size: 83KB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 84KB - Virtual size: 83KB