afd1fb6c0fb2b6e211bd17bc2ed5a403785e5fd6ef550aff7b4781d5b66f3fd0

General

Target

afd1fb6c0fb2b6e211bd17bc2ed5a403785e5fd6ef550aff7b4781d5b66f3fd0
Size

270KB
MD5

93b9f7ec3e6fbe5554f7d8373d522a7a
SHA1

77019b0fc65ff5364feb8f8d609f4a4b1a98004c
SHA256

afd1fb6c0fb2b6e211bd17bc2ed5a403785e5fd6ef550aff7b4781d5b66f3fd0
SHA512

457c095b7bbd63ddaddece4769723574872a968f0612441431246a00f96325999b4e09925b5d3c3303c4e1be20b9291fb4b517ac3496ded0309e637f711c4146
SSDEEP

6144:tLLuxpsUFjwRZg2SqqNrmFpdUywp2ZgYuajPk:tqHsIwzgGqFmWVp0G

Score

N/A

Malware Config

Signatures

Files

afd1fb6c0fb2b6e211bd17bc2ed5a403785e5fd6ef550aff7b4781d5b66f3fd0
.exe windows x86

c94281e633c518dd136593f531e475c2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetCommandLineW
PulseEvent
GetModuleHandleW
GetTickCount
GetSystemPowerStatus
GetModuleFileNameW
FlushInstructionCache
GetProcAddress
VirtualAlloc
LoadLibraryA
GetModuleHandleA
VirtualProtect
ResumeThread
GetStartupInfoW
SetUnhandledExceptionFilter
Sleep
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
WideCharToMultiByte
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 214KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c94281e633c518dd136593f531e475c2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 36KB - Virtual size: 36KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 11KB - Virtual size: 14KB

.rsrc Size: 214KB - Virtual size: 213KB

.text
Size: 36KB - Virtual size: 36KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 11KB - Virtual size: 14KB

.rsrc
Size: 214KB - Virtual size: 213KB