b874b2d1bc3c61253b7ce2efec7c8d2abfa2ff1ea1f45440d8eacde07d342eca

General

Target

b874b2d1bc3c61253b7ce2efec7c8d2abfa2ff1ea1f45440d8eacde07d342eca
Size

66KB
MD5

091cdaeb27dc21b6ee3cb1c2c6f3555a
SHA1

c4f116f95ca8117e5da783a7db668509a8e1ee61
SHA256

b874b2d1bc3c61253b7ce2efec7c8d2abfa2ff1ea1f45440d8eacde07d342eca
SHA512

7ff1e4347b1699876e7ff9ad0aa232590fcafa1462536b0380472ee78d40f88ca210621345dc02025e2816f34f30243c4ed22ea23cf079acd2381a3d155ca05c
SSDEEP

1536:APxhWc5dLOIKNrwXvtJ+AXkXdqskriiCiVBg3GCq2iW7z:Yj5dLO7Nkn/Ek2iCiVBmGCH

Score

N/A

Malware Config

Signatures

Files

b874b2d1bc3c61253b7ce2efec7c8d2abfa2ff1ea1f45440d8eacde07d342eca
.exe windows x86

8d97899eb41e68327ee3cc1b91c1ef6c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringA

mspdb60

_MREDrvFUpdateTargetFile@12
_MREFOpenByName@24
_MREDrvOneTimeInit@4
_MREDrvFFilesOutOfDate@8
_MREDrvFRelease@4
_MREFClose@8
_MREDrvFSuccessfulCompile@16
_MREQueryMreDrv@8

msvcrt

memmove
memset
strlen
strncmp
getenv
strcpy
_except_handler3
isdigit
memcpy
_mbschr
_mbsspn
strpbrk
strtoul
fgets
strstr
_mktemp
__p__pgmptr
_mbsstr
_mbsinc
strcat
_mbsrchr
exit
strncpy
_access
fseek
fclose
fopen
_mbslwr
_putenv
_splitpath
strchr
_makepath
strcmp
_mbsncmp
_mbccpy
_mbclen
_fullpath
_unlink
_mbsdec
_write
getchar
_isatty
_ftime
malloc
free
_strdup
_spawnvp
_errno
_flushall
_dup2
_exit
_XcptFilter
__p___initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_getcwd
_stricmp
_mbsupr
ftell
qsort
_ismbcspace

kernel32

SetEvent
GetLastError
RaiseException
InterlockedExchange
LocalAlloc
CreateFileA
GetConsoleScreenBufferInfo
SetConsoleCtrlHandler
LoadLibraryA
GetModuleHandleA
GetDiskFreeSpaceA
FreeLibrary
OpenEventA
CloseHandle
GetProcAddress

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�^�6�u�
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8d97899eb41e68327ee3cc1b91c1ef6c

Headers

File Characteristics

Imports

user32

mspdb60

msvcrt

kernel32

Sections

.text Size: 22KB - Virtual size: 21KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 1024B - Virtual size: 2KB

.rsrc Size: 13KB - Virtual size: 12KB

�^�6�u� Size: 16KB - Virtual size: 20KB

.text
Size: 22KB - Virtual size: 21KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 1024B - Virtual size: 2KB

.rsrc
Size: 13KB - Virtual size: 12KB

�^�6�u�
Size: 16KB - Virtual size: 20KB