bad70c363b1e27d68eeb840e7650b43f6572c66e8c6a5afb66ede1f8cf851f81

General

Target

bad70c363b1e27d68eeb840e7650b43f6572c66e8c6a5afb66ede1f8cf851f81
Size

208KB
MD5

a3b166d0998e8b9eaf01c58ec24541a0
SHA1

ef783a50f7539288e493abeb6a3af8e34f281bd6
SHA256

bad70c363b1e27d68eeb840e7650b43f6572c66e8c6a5afb66ede1f8cf851f81
SHA512

05b20a44a1d42cc100497d6a842882934169471a4d200e553cd8d4820c8aef21c81b913bd3a3c6d8702312e711fda516e79d0c6f2f8802999321ab91eee006d8
SSDEEP

6144:ZE49Bao8PJEuXi6nR+BgnUGcSy8chVdGBiR:FqRi6RtnUGcB8idt

Score

N/A

Malware Config

Signatures

Files

bad70c363b1e27d68eeb840e7650b43f6572c66e8c6a5afb66ede1f8cf851f81
.exe windows x86

45f19ff987dd4216c359d3cc016ad4da

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
MultiByteToWideChar
FindResourceA
GetOEMCP
SetLastError
QueryPerformanceCounter
CreateFileA
SystemTimeToFileTime
GetTickCount
LoadLibraryW
WideCharToMultiByte
HeapFree
GetLocalTime
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
lstrcpyA
lstrcmpA
CloseHandle
lstrlenA
GetProcessHeap
GetLocaleInfoA
HeapAlloc

scecli

SceBrowseDatabaseTable
SceAddToNameStatusList
SceCloseProfile
SceAddToObjectList
SceAppendSecurityProfileInfo
SceAnalyzeSystem

schannel

InitializeSecurityContextW
QueryContextAttributesW
QueryContextAttributesA
QuerySecurityPackageInfoW
QuerySecurityPackageInfoA

advapi32

RegCloseKey
RegQueryValueExA
RegQueryValueExW
RegOpenKeyExW

Sections

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.odata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jdata
Size: 3KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rcrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45f19ff987dd4216c359d3cc016ad4da

Headers

File Characteristics

Imports

kernel32

scecli

schannel

advapi32

Sections

.text Size: 108KB - Virtual size: 108KB

.rdata Size: 90KB - Virtual size: 90KB

.odata Size: 512B - Virtual size: 512B

.jdata Size: 3KB - Virtual size: 1.5MB

.tls Size: 512B - Virtual size: 512B

.rcrc Size: 3KB - Virtual size: 3KB

.text
Size: 108KB - Virtual size: 108KB

.rdata
Size: 90KB - Virtual size: 90KB

.odata
Size: 512B - Virtual size: 512B

.jdata
Size: 3KB - Virtual size: 1.5MB

.tls
Size: 512B - Virtual size: 512B

.rcrc
Size: 3KB - Virtual size: 3KB