19531b27321cf79f8fea9715777c391d5f0d796077e634206294d7369024bea0

General

Target

19531b27321cf79f8fea9715777c391d5f0d796077e634206294d7369024bea0
Size

957KB
MD5

93ddaf1feb63ba47ac8c5396cb475eac
SHA1

105669b2a15e45b6f7c12141f8fdd10c82e6b23a
SHA256

19531b27321cf79f8fea9715777c391d5f0d796077e634206294d7369024bea0
SHA512

3c30e11f9824ec26e6a08365c6910d56e7622f6eb6b08f03b474d9e814ef965dea5a27cfe0bed4e4a3ae299abc331e321ef41fbfdb6d725cc0e7221056012279
SSDEEP

24576:zCF80piqnZp9Qu1Y0nmen61qLL0pbacdj4knmKaKeBvj:zCFpp/nd1YGmennLL6OcdjHFK7

Score

N/A

Malware Config

Signatures

Files

19531b27321cf79f8fea9715777c391d5f0d796077e634206294d7369024bea0
.exe windows x86

1424f222ba04852fd58aa35225b8f09f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathAddBackslashW

kernel32

CreateFileW
SetUnhandledExceptionFilter
GetStartupInfoW
CreateProcessW
WaitForSingleObject
GetExitCodeProcess
CloseHandle
FindFirstFileW
FindClose
GetLastError
GetTempPathW
CreateDirectoryW
GetCommandLineW
GetModuleHandleW
ExitProcess
GetCurrentDirectoryW
SetCurrentDirectoryW
IsDebuggerPresent
WriteFile
SetFileTime
FindResourceW
LoadResource
SizeofResource
LockResource
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess

user32

wsprintfW

ole32

CoCreateGuid

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 799KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 346B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

PACK
Size: 144KB - Virtual size: 380KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1424f222ba04852fd58aa35225b8f09f

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

ole32

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 2KB

.rsrc Size: 800KB - Virtual size: 799KB

.reloc Size: 512B - Virtual size: 346B

PACK Size: 144KB - Virtual size: 380KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 2KB

.rsrc
Size: 800KB - Virtual size: 799KB

.reloc
Size: 512B - Virtual size: 346B

PACK
Size: 144KB - Virtual size: 380KB