22dee9ed2c58414ebe5a1f5f79a2b05088434669ee943fc7c4b2f93c7b94b2c0

General

Target

22dee9ed2c58414ebe5a1f5f79a2b05088434669ee943fc7c4b2f93c7b94b2c0
Size

34KB
MD5

00a44a94e6b7bd71c5a76d841251a8a0
SHA1

72a82ce30afe97ed2917f7b0360db1f691d52389
SHA256

22dee9ed2c58414ebe5a1f5f79a2b05088434669ee943fc7c4b2f93c7b94b2c0
SHA512

91330e302b0521426895d8399d5ca66562cf301061c9ff6c986459f0fe14075d332d40093c625ec5d63f18ae1f980ade057410385e587757c2e9f7334eb3786f
SSDEEP

768:1aD6bpIRUaq2CzS0pS0b+wHmol9CvctElkn3KKdn8mdnm0AzafdjcjO5:5dIOa3MdBHmozEBKdn8m4Dafd4q5

Score

N/A

Malware Config

Signatures

Files

22dee9ed2c58414ebe5a1f5f79a2b05088434669ee943fc7c4b2f93c7b94b2c0
.exe windows x86

848dc53bad81728d6725e37828e70fa0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr80

_putwch
fputws
_cputws
vfwprintf
_vcwprintf
_amsg_exit
__wgetmainargs
_cexit
_exit
_XcptFilter
__winitenv
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
fputwc
__p__commode
__p__fmode
_encode_pointer
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_decode_pointer
_except_handler4_common
_invoke_watson
_controlfp_s
_crt_debugger_hook
__iob_func
fseek
ftell
fread
_fsopen
_wfsopen
setlocale
_wcsicmp
_wcsnicmp
_wmakepath
_wsplitpath
_tzset
_fcloseall
_time64
remove
_wremove
calloc
exit
memmove
_wfullpath
__CxxFrameHandler3
_wcsdup
sprintf
strncpy
_chsize
fclose
fwrite
_splitpath
_makepath
strncat
_ultow
memcpy
_fileno
_get_osfhandle
free
memset
strncat_s
atoi
strncpy_s
_itoa
_adjust_fdiv
atol

advapi32

CryptGetHashParam
CryptHashData
CryptCreateHash
CryptAcquireContextA
CryptDestroyHash

kernel32

GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
InterlockedCompareExchange
Sleep
InterlockedExchange
FindResourceA
LoadResource
GetFileType
GetConsoleMode
SetErrorMode
GetVersion
GetCPInfo
GetCurrentProcessId
GetModuleFileNameA
CreateFileMappingA
MapViewOfFileEx
CloseHandle
UnmapViewOfFile
GetFileAttributesA
GetModuleHandleA
GetProcAddress
GetSystemDefaultLangID
GetConsoleOutputCP
GetLocaleInfoA
FindFirstFileA
FindNextFileA
FindClose
LoadLibraryExA
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
WideCharToMultiByte
IsDebuggerPresent

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

848dc53bad81728d6725e37828e70fa0

Headers

DLL Characteristics

File Characteristics

Imports

msvcr80

advapi32

kernel32

Sections

.text Size: 19KB - Virtual size: 19KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 19KB - Virtual size: 19KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 10KB - Virtual size: 10KB