e00932ad67c172bc0d630ebeea95987d0b2e0502ebf1cfa1c82327dc1259a50a

General

Target

e00932ad67c172bc0d630ebeea95987d0b2e0502ebf1cfa1c82327dc1259a50a
Size

73KB
MD5

089b73e5aca2916a64f7310caa0722a0
SHA1

f6d4f6a7be427b55ad72b49ac25448435c09959a
SHA256

e00932ad67c172bc0d630ebeea95987d0b2e0502ebf1cfa1c82327dc1259a50a
SHA512

87df5204d4e647387c2c69639b1efba0b6533f4321f1cb1080784e8095f6ba2be3d6645719b980483d11e024a08b7f82cfdf4e43ca57969d825cd21d75d9af80
SSDEEP

1536:9cm/b4mRnbSNgmZn/qXsEgEnLIg/ILCnzLiv7ieDkgAMG/mRnBWXmZn9l6gEnsSN:9ckUmRnbSNgmZn/qXVgEnLIg/ILCnzL1

Score

N/A

Malware Config

Signatures

Files

e00932ad67c172bc0d630ebeea95987d0b2e0502ebf1cfa1c82327dc1259a50a
.exe windows x86

108644116216b7b1ce7b3edacbd830aa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WriteFile
SetFilePointer
CreateFileW
WriteConsoleW
GetFileType
GetStdHandle
LocalFree
LocalAlloc
FormatMessageW
GetLastError
GetCurrentDirectoryW
FreeLibrary
SetConsoleCtrlHandler
GetFileAttributesW
GetModuleHandleW
GetConsoleOutputCP
GetProcAddress
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
SetThreadUILanguage

msvcrt

__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
_cexit
__set_app_type
_except_handler3
_controlfp
__winitenv
_exit
_c_exit
_wcsicmp
vprintf
setlocale
wcsncpy
wcscat
wcscpy
wcsrchr
iswctype
fgetwc
towlower
vswprintf
_XcptFilter
exit
_iob
vfwprintf
__p__fmode
wcslen
sprintf

scecli

SceCloseProfile
SceAnalyzeSystem
SceIsSystemDatabase
SceRegisterRegValues
SceOpenProfile
SceGetSecurityProfileInfo
SceFreeMemory
SceConfigureSystem
SceWriteSecurityProfileInfo
SceFreeProfileMemory
SceSetupGenerateTemplate
SceBrowseDatabaseTable
SceGenerateRollback

user32

LoadStringW

shlwapi

PathCanonicalizeW
PathIsDirectoryW
PathIsRootW

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

108644116216b7b1ce7b3edacbd830aa

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

scecli

user32

shlwapi

Sections

.text Size: 11KB - Virtual size: 10KB

.data Size: 512B - Virtual size: 80B

.rsrc Size: 60KB - Virtual size: 64KB

.text
Size: 11KB - Virtual size: 10KB

.data
Size: 512B - Virtual size: 80B

.rsrc
Size: 60KB - Virtual size: 64KB