4db63531c6a6e41d74866b4595468256c2858999f52381d27be26a47673b5f9e

General

Target

4db63531c6a6e41d74866b4595468256c2858999f52381d27be26a47673b5f9e
Size

396KB
MD5

401726cc7088696c9436821b5645712f
SHA1

7d6f05447f660b614d65a17a423eacf0c6b5fdf2
SHA256

4db63531c6a6e41d74866b4595468256c2858999f52381d27be26a47673b5f9e
SHA512

93a8fa0a165323c9659d274f2aea4ea9d682648294953ab87d2934b2229aa41c0b3d1071fb108fa81a9c0d2321f456d81d2a77d449ee70157717edc108d528df
SSDEEP

3072:kVtxTDT092KuDltMQ8+J8UyZP6np/iMLH7M5I8hBG0uT0MPZ4ilYJ:ixvooeQpCUyV6ncmoVruTDB4

Score

N/A

Malware Config

Signatures

Files

4db63531c6a6e41d74866b4595468256c2858999f52381d27be26a47673b5f9e
.exe windows x86

798f3e65135ade4c5d43a064aade92c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadPriority
SetThreadPriority
GetProcessHeap
GetProcAddress
LoadLibraryA
CreateMutexA
VirtualAlloc
GetLastError
GetConsoleMode
TerminateThread
DeleteFileW
SetConsoleMode
ReadConsoleInputA
VirtualProtect
GetModuleHandleA
WriteConsoleA
GetSystemInfo
ExitProcess
GetStartupInfoA
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
InterlockedExchange
VirtualQuery
HeapAlloc
GetACP
GetOEMCP
GetCPInfo
HeapReAlloc
FlushFileBuffers
SetFilePointer
HeapSize
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
CloseHandle
GetLocaleInfoA
CreateFileA

user32

LoadAcceleratorsA
DestroyWindow

gdi32

GetBitmapBits

ole32

CoInitialize

avifil32

AVISaveA

ws2_32

WSAGetLastError

Sections

.text
Size: 268KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

798f3e65135ade4c5d43a064aade92c5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

avifil32

ws2_32

Sections

.text Size: 268KB - Virtual size: 264KB

.rdata Size: 48KB - Virtual size: 44KB

.data Size: 72KB - Virtual size: 76KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 268KB - Virtual size: 264KB

.rdata
Size: 48KB - Virtual size: 44KB

.data
Size: 72KB - Virtual size: 76KB

.rsrc
Size: 4KB - Virtual size: 2KB