28d6bfaedfc55b5a3b1ee45a52e14d94daadfe6402772e3a9fdb15bc63db8ee6

Sharing

Copy URL Twitter E-mail

General

Target

28d6bfaedfc55b5a3b1ee45a52e14d94daadfe6402772e3a9fdb15bc63db8ee6
Size

337KB
MD5

5eef9a158dbc93d33f25b8220e8dbec5
SHA1

ffd36e8de3b14e97457a59bb3de570d6289321ef
SHA256

28d6bfaedfc55b5a3b1ee45a52e14d94daadfe6402772e3a9fdb15bc63db8ee6
SHA512

964a5a5f47d25756e668a331042189e579bab84fecc15859a0a732be5a7b07fa80874b82dc6a8f1b5544ffdeb4e9490f8bc550eca67226c44b21ae8b3d9645e6
SSDEEP

6144:IW0PFIUPIQg9EADqLqqORCHwPzkhtm+0zqaP3+AOPBF4T0NjBOfjcg:IHAB9EA43HwCjK3+J4T0NjBOLcg

Score

N/A

Malware Config

Signatures

Files

28d6bfaedfc55b5a3b1ee45a52e14d94daadfe6402772e3a9fdb15bc63db8ee6
.exe windows x86

b26226cfff5e92752e4fea3d73dac603

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
InitializeCriticalSectionEx
HeapSize
GetLastError
HeapReAlloc
HeapAlloc
DecodePointer
GetConsoleWindow
GetProcessHeap
DeleteCriticalSection
GetModuleFileNameA
IsDebuggerPresent
OutputDebugStringW
RaiseException
EnterCriticalSection
LeaveCriticalSection
GetEnvironmentVariableW
SetEnvironmentVariableW
CloseHandle
WaitForSingleObject
CreateEventW
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
GetModuleHandleW
GetProcAddress
InitializeSListHead
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
RtlUnwind
InterlockedPushEntrySList
SetLastError
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
GetStdHandle
WriteFile
GetCommandLineA
GetCommandLineW
GetFileType
ReadFile
GetConsoleMode
GetConsoleOutputCP
GetFileSizeEx
SetFilePointerEx
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetExitCodeProcess
CreateProcessW
GetFileAttributesExW
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
GetStringTypeW
CreateFileW
FlushFileBuffers
WriteConsoleW
LCMapStringEx
SetFilePointer

user32

DispatchMessageA
PostQuitMessage
PeekMessageA
ShowWindow

Sections

.text
Size: 231KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b26226cfff5e92752e4fea3d73dac603

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 231KB - Virtual size: 231KB

.rdata Size: 82KB - Virtual size: 81KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 13KB - Virtual size: 12KB

.text
Size: 231KB - Virtual size: 231KB

.rdata
Size: 82KB - Virtual size: 81KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 13KB - Virtual size: 12KB