ab15c2756343872ef41eab9dec298f2936bc4a8d7d12eb8eadb752021e24878f

Sharing

Copy URL Twitter E-mail

General

Target

ab15c2756343872ef41eab9dec298f2936bc4a8d7d12eb8eadb752021e24878f
Size

10.5MB
MD5

51d9893119caeda76205e8a008de9f8c
SHA1

ce818c1f1d1fa6c9bc13d45456068e77dab60de0
SHA256

ab15c2756343872ef41eab9dec298f2936bc4a8d7d12eb8eadb752021e24878f
SHA512

0b6288ac603bbc1906ea6f277a947cc4f099510605ecd314b29510ca92dad19eda9eeb975b9e6d0cc034193f5a859728efa36219b1388841f49a83d220cb1c47
SSDEEP

98304:jKC1eeAfurH+xiOxeV0QvnLjaMhb3nqtOfY4mFyOXWSPDXsO7ePZIfaOr5et4GU0:M28FEVpqkcGSD6PZIfaOte2A

Score

N/A

Malware Config

Signatures

Files

ab15c2756343872ef41eab9dec298f2936bc4a8d7d12eb8eadb752021e24878f
.exe windows x86

495687ecc4cfb011b8e572b003af6871

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
GetLastError
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetProcAddress
GetModuleHandleW
lstrcmpiW
LocalFree
LocalAlloc
FormatMessageW
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleFileNameW
MoveFileExW
DeleteFileW
CloseHandle
DeviceIoControl
Sleep
GetUserDefaultUILanguage
CreateFileW
HeapFree
HeapAlloc
GetProcessHeap
GetCurrentProcess
CopyFileW
FindClose
FindNextFileW
FindFirstFileW
SetCurrentDirectoryW
GetWindowsDirectoryW
GetSystemDirectoryW
LoadLibraryW
GetTempPathW
CreateProcessW
GetFirmwareEnvironmentVariableW
SetLastError
SetFilePointerEx
ReadFile
GetFileSizeEx
SetFirmwareEnvironmentVariableW
CreateDirectoryW
EnterCriticalSection
GetPrivateProfileStringW
GetShortPathNameW
GetVolumeInformationW
GetVolumePathNameW
WriteFile
FindVolumeClose
FindNextVolumeW
QueryDosDeviceW
FindFirstVolumeW
GetDriveTypeW
InitializeCriticalSection
UnhandledExceptionFilter
WaitForSingleObject
GetCurrentThread
GetCurrentThreadId
SetUnhandledExceptionFilter
ReleaseMutex
CreateMutexW
GetVersionExW
SetFileTime
GetFileTime
FlushFileBuffers
GetFileSize
LockResource
GetFileAttributesW
WideCharToMultiByte
OpenProcess
GetCurrentProcessId
GetCurrentDirectoryW
RemoveDirectoryW
SetErrorMode
VirtualLock
SetFilePointer
SetFileAttributesW
GetTickCount
GetFileType
RaiseException
WritePrivateProfileStringW
lstrlenW
InterlockedExchange
LoadLibraryA
InterlockedIncrement
InterlockedDecrement
GetStringTypeW
InterlockedCompareExchange
EncodePointer
DecodePointer
RtlUnwind
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileExW
ExitThread
ResumeThread
CreateThread
ExitProcess
MoveFileW
GetSystemTimeAsFileTime
SetStdHandle
IsDebuggerPresent
TerminateProcess
GetCommandLineW
HeapSetInformation
GetStartupInfoW
HeapReAlloc
LCMapStringW
GetCPInfo
GetStdHandle
HeapCreate
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
HeapSize
IsProcessorFeaturePresent
GetFullPathNameW
GetFileInformationByHandle
PeekNamedPipe
GetACP
GetOEMCP
IsValidCodePage
GetLocaleInfoW
SetHandleCount
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTimeZoneInformation
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
SetEndOfFile
WriteConsoleW
CompareStringW
SetEnvironmentVariableA

Sections

.text
Size: 407KB - Virtual size: 406KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9.9MB - Virtual size: 9.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

495687ecc4cfb011b8e572b003af6871

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 407KB - Virtual size: 406KB

.rdata Size: 84KB - Virtual size: 83KB

.data Size: 15KB - Virtual size: 293KB

.rsrc Size: 9.9MB - Virtual size: 9.9MB

.reloc Size: 53KB - Virtual size: 53KB

.text
Size: 407KB - Virtual size: 406KB

.rdata
Size: 84KB - Virtual size: 83KB

.data
Size: 15KB - Virtual size: 293KB

.rsrc
Size: 9.9MB - Virtual size: 9.9MB

.reloc
Size: 53KB - Virtual size: 53KB