2dcb513a934657bbde7606627c728a10af49bd8ee5b618d8a6f24f56d99a5207

General

Target

2dcb513a934657bbde7606627c728a10af49bd8ee5b618d8a6f24f56d99a5207
Size

1.5MB
MD5

0f69d1f84dd0302ad0cbe3004622feb5
SHA1

916ead5e922cccea738e671568b79be511cce666
SHA256

2dcb513a934657bbde7606627c728a10af49bd8ee5b618d8a6f24f56d99a5207
SHA512

c4e4412ac5875d72e629f593a8ac3dc5145a8c17d6e1e8a2b3b23e05286c87f60f2b01584e582d3979bc16dea7db4e56906a0b623b065107ca324790c00dbd85
SSDEEP

24576:bH8EZGzu9RvXNfxnRrDBK7Oi5IrBwukTTj5rukGDCcBaPMuDJtYgb2N:j8QUaHnRrDBs35IF6iCcEPrtrbW

Score

N/A

Malware Config

Signatures

Files

2dcb513a934657bbde7606627c728a10af49bd8ee5b618d8a6f24f56d99a5207
.exe windows x86

e9a2ae40083d89fa2ece7e5c85f7a692

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
GetModuleHandleA
GetCurrentThreadId
GetCurrentThread
GetCommandLineA
GetVersion
GetTickCount
GetLastError
ExitProcess
VirtualAlloc
LeaveCriticalSection
CreateFileA
Sleep
CreateEventA
VirtualFree
UnmapViewOfFile
InitializeCriticalSection
CreateProcessA
TerminateProcess
CreateFileMappingA
GetSystemTimeAsFileTime
CloseHandle
FormatMessageW
WriteFile
SetUnhandledExceptionFilter
FindFirstFileA
SetFilePointer
GetStringTypeA
MapViewOfFile
GlobalUnlock
InterlockedCompareExchange
GetProcAddress
DeleteFileW
UnhandledExceptionFilter
LocalAlloc
GetCurrentProcess
GetVersionExA
HeapAlloc
FreeLibrary
GlobalFree
HeapCreate
EnterCriticalSection
GetStdHandle
GetEnvironmentVariableA

user32

EnableWindow
GetClientRect
SetTimer
GetSubMenu
RegisterClassA
GetDlgItem
SendMessageA
ReleaseDC
GetDC
GetSysColor
IsWindowEnabled
EndPaint
DispatchMessageA
SetWindowPos
PostQuitMessage

Sections

.text
Size: 1.4MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9a2ae40083d89fa2ece7e5c85f7a692

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 1.4MB - Virtual size: 1.8MB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 20KB - Virtual size: 20KB

.rsrc Size: 60KB - Virtual size: 60KB

.text
Size: 1.4MB - Virtual size: 1.8MB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 20KB - Virtual size: 20KB

.rsrc
Size: 60KB - Virtual size: 60KB