6eb7bef5fb5c21c12c909de1ec624d9424da9a04ac645bee3595c0ea2a1cf6ca

General

Target

6eb7bef5fb5c21c12c909de1ec624d9424da9a04ac645bee3595c0ea2a1cf6ca
Size

488KB
MD5

0fc504b59f6cf81030ecb959e30a7fd0
SHA1

283253f6406e8229f5385f94cca2d9975861170e
SHA256

6eb7bef5fb5c21c12c909de1ec624d9424da9a04ac645bee3595c0ea2a1cf6ca
SHA512

3e985f8b5c7bb6e6292e799b080923bb571ed8d42aaf7eec594d88654dfb212d95a5f1dfc8f802d1003544491357adb63e8a5bc93c8b17dc19fd34ac90b26180
SSDEEP

6144:gLKEnt91nLeO29bI7kRuzwTxrEDPdihtTACKhvK9odTRqv0Fhp6Wn:KtrnSl9szwTxrEDPdwTGXMsD7

Score

N/A

Malware Config

Signatures

Files

6eb7bef5fb5c21c12c909de1ec624d9424da9a04ac645bee3595c0ea2a1cf6ca
.exe windows x86

b0913225feaed9d3b214e99697dcc112

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SearchPathA
GetCommandLineA
InitializeCriticalSection
Sleep
InterlockedExchange
EnterCriticalSection
LeaveCriticalSection
GetStdHandle
GetFullPathNameA
VirtualFree
IsBadReadPtr
VirtualAlloc
GetSystemInfo
GetModuleHandleA
GetVersionExA
GetLastError
SetConsoleCtrlHandler
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
SetFilePointer
WriteFile
CloseHandle
SetStdHandle
GetFileType
CreateFileA
ReadFile
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
GetFileInformationByHandle
PeekNamedPipe
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetStartupInfoA
DeleteCriticalSection
TlsAlloc
SetLastError
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
HeapDestroy
HeapCreate
HeapFree
HeapAlloc
RtlUnwind
SetEndOfFile
GetFileAttributesA
FlushFileBuffers
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetCurrentDirectoryA
LCMapStringA
LCMapStringW
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
HeapReAlloc
VirtualQuery
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapSize
VirtualProtect
GetLocaleInfoA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetTimeZoneInformation
DeleteFileA

Sections

.text
Size: 312KB - Virtual size: 311KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 68KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b0913225feaed9d3b214e99697dcc112

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 312KB - Virtual size: 311KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 68KB - Virtual size: 1.2MB

.data1 Size: 96KB - Virtual size: 96KB

.text
Size: 312KB - Virtual size: 311KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 68KB - Virtual size: 1.2MB

.data1
Size: 96KB - Virtual size: 96KB