efe46ef0b865eb1b75e50c26974bdf998413714598ae99e9564f7266aa82470d

General

Target

efe46ef0b865eb1b75e50c26974bdf998413714598ae99e9564f7266aa82470d
Size

68KB
MD5

f31dcb15389cdaf940c0876868688143
SHA1

0e4df929db5c7d05559a187f52aedae5a9a24180
SHA256

efe46ef0b865eb1b75e50c26974bdf998413714598ae99e9564f7266aa82470d
SHA512

ffc94ea1f00077033f22c6a3ad74f0dd3249269aad7fb5e0282fd097422c87fbab7556a718ba4be557b75853250d61c9b2618778844c8f5bb803732d40cdb1b4
SSDEEP

768:uX+FZXJHB4KEpNlon/kMy20LKZ6NHdxKGB2IkXrb4FO9JUrtHwz04d:uuTXZBClUA7H9fkgEMtQYo

Score

N/A

Malware Config

Signatures

Files

efe46ef0b865eb1b75e50c26974bdf998413714598ae99e9564f7266aa82470d
.exe windows x86

3ef994b31185b57f7c9046599269f14f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

psapi

EnumProcesses
EnumProcessModules
GetModuleFileNameExA

advapi32

OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges

kernel32

SetLastError
CloseHandle
OpenProcess
GetLastError
GetCurrentProcess
FreeLibrary
LoadLibraryA
ReadProcessMemory
IsBadReadPtr
HeapFree
HeapAlloc
GetProcAddress
GetModuleHandleA
ExitProcess
GetCommandLineA
GetVersionExA
GetProcessHeap
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EnterCriticalSection
LeaveCriticalSection
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
HeapReAlloc
WriteFile
GetStdHandle
GetModuleFileNameA
SetHandleCount
GetFileType
GetStartupInfoA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
GetCurrentThreadId
InterlockedDecrement
InitializeCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
Sleep
GetCPInfo
GetACP
GetOEMCP
RtlUnwind
SetFilePointer
GetConsoleCP
GetConsoleMode
HeapSize
MultiByteToWideChar
GetLocaleInfoA
FlushFileBuffers
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3ef994b31185b57f7c9046599269f14f

Headers

File Characteristics

Imports

psapi

advapi32

kernel32

Sections

.text Size: 48KB - Virtual size: 44KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 8KB - Virtual size: 14KB

.text
Size: 48KB - Virtual size: 44KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 8KB - Virtual size: 14KB