64dd6f704fa8bdd84b3756f6195dc17953a9d4276b0a7bb0afaef66405175846

General

Target

64dd6f704fa8bdd84b3756f6195dc17953a9d4276b0a7bb0afaef66405175846
Size

551KB
MD5

071d3594fd142fa7457e2a956097ba20
SHA1

8bf9be4e640f0664c7e9e55de020d72e720e9f97
SHA256

64dd6f704fa8bdd84b3756f6195dc17953a9d4276b0a7bb0afaef66405175846
SHA512

956c016bb2bcc5e8b0ba7d41fee4adf566111bbe711e0e3a38988524016854cfa7832a45cd9032280fb6dbbddaf4711a2374e827b6b25200271fa77dc3fa16f0
SSDEEP

6144:MQAPOhLKVDesHrYkdquv0JVeJTqKipnSrf/H0+PtMEbFTfd7s0p5uQ0mvY:MQA6Vt+qhCWKio3HDtFbl1Tp57hvY

Score

N/A

Malware Config

Signatures

Files

64dd6f704fa8bdd84b3756f6195dc17953a9d4276b0a7bb0afaef66405175846
.exe windows x86

4cea7d76114bad2cdcc4b45d14328411

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostQuitMessage
SendMessageW
DispatchMessageW
TranslateMessage
GetMessageW
MoveWindow
CreateWindowExW
RegisterClassExW
DefWindowProcA
RealChildWindowFromPoint
SetForegroundWindow
SetWindowPlacement
SetClipboardData

kernel32

GetLastError
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
ReadConsoleInputA
SetConsoleMode
SetStdHandle
lstrcmpiW
lstrcpyW
SetLastError
SetUnhandledExceptionFilter
WriteConsoleW
ReadFile
TerminateProcess
UnhandledExceptionFilter
WideCharToMultiByte
SetHandleCount
WriteFile
RtlUnwind
Sleep
SetFilePointer
TlsSetValue
TlsGetValue
TlsAlloc
TlsFree
lstrcatW
GetProcessHeap
HeapAlloc
ExitProcess
GetCommandLineA
GetStartupInfoA
GetModuleHandleW
GetProcAddress
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetFileType
DeleteCriticalSection
InterlockedIncrement
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcess
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualAlloc
HeapReAlloc
HeapSize
GetLocaleInfoA

Sections

.text
Size: 387KB - Virtual size: 386KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4cea7d76114bad2cdcc4b45d14328411

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 387KB - Virtual size: 386KB

.rdata Size: 64KB - Virtual size: 64KB

.data Size: 59KB - Virtual size: 61KB

.rsrc Size: 38KB - Virtual size: 38KB

.text
Size: 387KB - Virtual size: 386KB

.rdata
Size: 64KB - Virtual size: 64KB

.data
Size: 59KB - Virtual size: 61KB

.rsrc
Size: 38KB - Virtual size: 38KB