c20546a80de2dae67018ae797c7762c15b16a5f30deb46fa76ef8a871baf8cf8

Sharing

Copy URL Twitter E-mail

General

Target

c20546a80de2dae67018ae797c7762c15b16a5f30deb46fa76ef8a871baf8cf8
Size

242KB
MD5

81ecbca3e023f8e36403b7351884fad0
SHA1

67fac4faa7ab355236630cb42232b14c25cf180e
SHA256

c20546a80de2dae67018ae797c7762c15b16a5f30deb46fa76ef8a871baf8cf8
SHA512

3b1171e261c59d33682eefbbc1efa43127d04597dd4fe75fcdea889ba025a8efdc5843e6279e0ccc75583bd329b575029c30928d7e83ce9edba4f8fe49459f66
SSDEEP

6144:06h4L7744MTFcieZjBPpFpdEqaHuMbRnXY3Qnk:0k4/E9cie9RE7NnXDk

Score

N/A

Malware Config

Signatures

Files

c20546a80de2dae67018ae797c7762c15b16a5f30deb46fa76ef8a871baf8cf8
.exe windows x86

51fc2db3975da75ae478d95a60d93578

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
DisableThreadLibraryCalls
DeleteCriticalSection
SleepEx
SetLastError
FreeLibrary
ExpandEnvironmentStringsA
FormatMessageA
WaitForSingleObject
CloseHandle
LoadLibraryExW
GetModuleHandleW
RaiseException
LocalAlloc
LocalFree
GetCurrentThreadId
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemTimeAsFileTime
LoadLibraryA
VirtualAllocEx

esent

JetCreateInstance

kbdtat

KbdLayerDescriptor

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.OlVGJi
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BJNZZ
Size: 1024B - Virtual size: 957B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pLumyk
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 846B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tLCI
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 213KB - Virtual size: 390KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shZK
Size: 512B - Virtual size: 249B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51fc2db3975da75ae478d95a60d93578

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

esent

kbdtat

Sections

.text Size: 17KB - Virtual size: 16KB

.OlVGJi Size: 1KB - Virtual size: 1KB

.BJNZZ Size: 1024B - Virtual size: 957B

.pLumyk Size: 1024B - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 846B

.tLCI Size: 2KB - Virtual size: 3KB

.data Size: 213KB - Virtual size: 390KB

.shZK Size: 512B - Virtual size: 249B

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 17KB - Virtual size: 16KB

.OlVGJi
Size: 1KB - Virtual size: 1KB

.BJNZZ
Size: 1024B - Virtual size: 957B

.pLumyk
Size: 1024B - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 846B

.tLCI
Size: 2KB - Virtual size: 3KB

.data
Size: 213KB - Virtual size: 390KB

.shZK
Size: 512B - Virtual size: 249B

.rsrc
Size: 3KB - Virtual size: 3KB