ef19802bcd8ee167891606761a1c564e9ade6c79651da0cff914963847c3b4c6

Sharing

Copy URL

Twitter E-mail

General

Target

ef19802bcd8ee167891606761a1c564e9ade6c79651da0cff914963847c3b4c6
Size

9.3MB
MD5

851491ee2675c48b20f1de54cf0ce71b
SHA1

0a310de634e72c20b33e3e22eb97393219988adf
SHA256

ef19802bcd8ee167891606761a1c564e9ade6c79651da0cff914963847c3b4c6
SHA512

969b1732fa0af02ef143a9363d58d462d93517a9c6b2e11e451e951d969291386a50e02c2d038f824fdc83a32753bf2f868df7217946f38ea84eeaf40756e50a
SSDEEP

196608:6MxoHOKTNh2dSpoVuxrdCN/wX937YoaYgtAV+s:HydTvpoVuxhQYX9LYggtAV+s

Score

N/A

Malware Config

Signatures

Files

ef19802bcd8ee167891606761a1c564e9ade6c79651da0cff914963847c3b4c6
.exe windows x86

5b3c987aa13de7660a0fb40919dc1c4c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
Sleep
ReadFile
CreateFileA
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetStringTypeW

user32

GetMessageA
TranslateMessage
DispatchMessageA
GetDesktopWindow

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 64.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IDATA
Size: 4.2MB - Virtual size: 4.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

C1HQMJP
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

QZXZHA8
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TLAKSO1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

L0QYXKP
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ARTFIF
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

M3IGBX
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

KEAGTPL
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LK7BUF
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PK2NXQ
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SSRANI
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

XFSFVE7
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

YS2OU9
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UQWLAK
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

AEZDFK
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Y6OWAHJ
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

GREKL6
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b3c987aa13de7660a0fb40919dc1c4c

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 16KB - Virtual size: 13KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 64.0MB

IDATA Size: 4.2MB - Virtual size: 4.2MB

C1HQMJP Size: 4KB - Virtual size: 3KB

QZXZHA8 Size: 4KB - Virtual size: 2KB

TLAKSO1 Size: 4KB - Virtual size: 2KB

L0QYXKP Size: 4KB - Virtual size: 2KB

ARTFIF Size: 4KB - Virtual size: 3KB

M3IGBX Size: 4KB - Virtual size: 3KB

KEAGTPL Size: 4KB - Virtual size: 2KB

LK7BUF Size: 4KB - Virtual size: 3KB

PK2NXQ Size: 4KB - Virtual size: 2KB

SSRANI Size: 4KB - Virtual size: 2KB

XFSFVE7 Size: 4KB - Virtual size: 2KB

YS2OU9 Size: 4KB - Virtual size: 2KB

UQWLAK Size: 4KB - Virtual size: 2KB

AEZDFK Size: 4KB - Virtual size: 3KB

Y6OWAHJ Size: 4KB - Virtual size: 2KB

GREKL6 Size: 4KB - Virtual size: 2KB

.rsrc Size: 24KB - Virtual size: 22KB

.text
Size: 16KB - Virtual size: 13KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 64.0MB

IDATA
Size: 4.2MB - Virtual size: 4.2MB

C1HQMJP
Size: 4KB - Virtual size: 3KB

QZXZHA8
Size: 4KB - Virtual size: 2KB

TLAKSO1
Size: 4KB - Virtual size: 2KB

L0QYXKP
Size: 4KB - Virtual size: 2KB

ARTFIF
Size: 4KB - Virtual size: 3KB

M3IGBX
Size: 4KB - Virtual size: 3KB

KEAGTPL
Size: 4KB - Virtual size: 2KB

LK7BUF
Size: 4KB - Virtual size: 3KB

PK2NXQ
Size: 4KB - Virtual size: 2KB

SSRANI
Size: 4KB - Virtual size: 2KB

XFSFVE7
Size: 4KB - Virtual size: 2KB

YS2OU9
Size: 4KB - Virtual size: 2KB

UQWLAK
Size: 4KB - Virtual size: 2KB

AEZDFK
Size: 4KB - Virtual size: 3KB

Y6OWAHJ
Size: 4KB - Virtual size: 2KB

GREKL6
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 24KB - Virtual size: 22KB