b95cc141c8ec4731d075708469333bc05ac4bf80493f73bbc0c68a2149f34795

General

Target

b95cc141c8ec4731d075708469333bc05ac4bf80493f73bbc0c68a2149f34795
Size

281KB
MD5

064f6c433bb9f0a4b39acd64b3c4ef93
SHA1

04df48a7fd679343f8a34b035f10c25341d2e5eb
SHA256

b95cc141c8ec4731d075708469333bc05ac4bf80493f73bbc0c68a2149f34795
SHA512

f037fd2b408c61ad4e9d40997581586f65546d619b77578b4b94b465c125aa6f420499b163f82cd77facd146f82a5ef62289f81943b37d6a4bb37bec2fded582
SSDEEP

6144:nUOgGQZUai2Ye1b5mDuNav3sTxasvMLtdk3Y0LcCSQyb:nlgfdi2x1b5guNacx1c0Y0oCSQA

Score

N/A

Malware Config

Signatures

Files

b95cc141c8ec4731d075708469333bc05ac4bf80493f73bbc0c68a2149f34795
.exe windows x86

b0e1d7bc4385b51527e1692bee0ac700

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DefineDosDeviceW
lstrcatW
Sleep
WritePrivateProfileStructA
SetVolumeLabelA
BackupRead
CreateJobObjectW
AssignProcessToJobObject
GetTempPathA
WaitForMultipleObjectsEx
GetPrivateProfileSectionNamesA
OpenEventW
LocalAlloc
MapViewOfFileEx
OpenWaitableTimerW
CommConfigDialogA
FindFirstFileW
GetCPInfo
Beep
IsValidLanguageGroup
FindFirstVolumeMountPointW
CreateIoCompletionPort
GetQueuedCompletionStatus
CreateMutexW
CreateDirectoryExW
SetLocaleInfoA
GetCommMask
SetSystemTimeAdjustment
CloseHandle
GetCommConfig
SetSystemPowerState
GlobalHandle
GetStringTypeW
CallNamedPipeA

user32

IsChild
GetCapture
GetClassInfoA
CloseClipboard
DrawStateW
FrameRect

imm32

ImmGetCompositionStringA

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 512B - Virtual size: 355B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0e1d7bc4385b51527e1692bee0ac700

Headers

File Characteristics

Imports

kernel32

user32

imm32

Sections

.text Size: 180KB - Virtual size: 179KB

.rdata Size: 1KB - Virtual size: 1KB

.xdata Size: 512B - Virtual size: 355B

.data Size: 95KB - Virtual size: 95KB

.reloc Size: 512B - Virtual size: 420B

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 180KB - Virtual size: 179KB

.rdata
Size: 1KB - Virtual size: 1KB

.xdata
Size: 512B - Virtual size: 355B

.data
Size: 95KB - Virtual size: 95KB

.reloc
Size: 512B - Virtual size: 420B

.rsrc
Size: 1KB - Virtual size: 1KB