211d85f8865429e919949443674845ab4f5ff85c7f4666e4273e4d4ab4fa7b91

General

Target

211d85f8865429e919949443674845ab4f5ff85c7f4666e4273e4d4ab4fa7b91
Size

229KB
MD5

9293db574c26581eadc540d2ef2287c9
SHA1

154f71581517675c11067bc004d26f0641d9ea55
SHA256

211d85f8865429e919949443674845ab4f5ff85c7f4666e4273e4d4ab4fa7b91
SHA512

310361d837719b56efc758c2bb5668bed9f8bd49a9c6ad8d20b2c35db91c9c2d12e2c7cb3bb36002700dc8df990a3cb73cf85284797d43826face8c369f02f38
SSDEEP

6144:icQOClWaSCk64geocQOnb1opGpnVdzBm:irOCkaSCXJOeIm

Score

N/A

Malware Config

Signatures

Files

211d85f8865429e919949443674845ab4f5ff85c7f4666e4273e4d4ab4fa7b91
.exe windows x86

9ee250c2f4a11a759b5afb53a3477202

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WinExec
GetSystemDirectoryA
GetProcessHeaps
GetModuleFileNameA
VirtualFreeEx
AreFileApisANSI
FlushFileBuffers
GetThreadContext
GetVersion
RemoveDirectoryA
GetEnvironmentStringsW
GetProcAddress
LoadLibraryA
GetVersionExA
GetCurrentProcess
VirtualFree
GetLogicalDrives
MapViewOfFileEx
CreateThread
FlushInstructionCache
FileTimeToLocalFileTime
SearchPathA
GetTempPathA
HeapFree
GetPriorityClass
GetVolumeInformationA
GetSystemTimeAdjustment
UnmapViewOfFile
GetCommandLineA
WriteFileEx
SetEvent
VirtualAlloc
GetStdHandle
GlobalDeleteAtom
GetModuleHandleA
GetStartupInfoA
ExitProcess
GetCPInfo
HeapAlloc
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
RtlUnwind
WriteFile
GetStringTypeA
GetStringTypeW
MultiByteToWideChar
HeapReAlloc
GetACP
GetOEMCP
LCMapStringA
LCMapStringW

Sections

.text
Size: 219KB - Virtual size: 218KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ee250c2f4a11a759b5afb53a3477202

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 219KB - Virtual size: 218KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 219KB - Virtual size: 218KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 2KB - Virtual size: 2KB