a11650147c64a45b9e8402129fb92b23c061e098e5a91ef51f373fcfaee07ff7

General

Target

a11650147c64a45b9e8402129fb92b23c061e098e5a91ef51f373fcfaee07ff7
Size

420KB
MD5

02846c91aba0dc363e733e557a3fda5f
SHA1

bc5e68679d6272756177ce203b6cd7c6f2f0b400
SHA256

a11650147c64a45b9e8402129fb92b23c061e098e5a91ef51f373fcfaee07ff7
SHA512

5e70faafb04b37fd60268b3172ebcfb23d2555db24f868b5806661cc3e60e603379ee03d7ebea08f12048ea01b97eba6f171ecdefc4fa16adedb8e39ea2d138a
SSDEEP

6144:ZmiyQwJcBFGsd5dSt4w8PcURcNS38hMdB+xbBoVmNSzp5ioFcm6upBV527:eQscBMsE+Pc0cU3Tu8eoFd952

Score

N/A

Malware Config

Signatures

Files

a11650147c64a45b9e8402129fb92b23c061e098e5a91ef51f373fcfaee07ff7
.exe windows x86

bc7df21bf354de833d359a7800cc6103

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
GetVersion
ExitProcess
GetFileType
InterlockedDecrement
GlobalAlloc
CreateFileW
LocalFree
FreeLibrary
SetFileAttributesA
GetModuleHandleW
GetACP
FindNextFileA
CompareStringA
WriteFile
SetUnhandledExceptionFilter
InterlockedExchange
ReadFile
GetModuleHandleA
WideCharToMultiByte
FormatMessageA
GlobalLock
GetCommandLineA
IsDebuggerPresent
HeapSize
MultiByteToWideChar
SetErrorMode
UnhandledExceptionFilter
CreateThread
GetCommandLineW
LocalAlloc
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
GetModuleFileNameA
HeapAlloc
HeapDestroy
GetOEMCP
WaitForSingleObject
GlobalFree
GetStdHandle
HeapFree
TlsGetValue
GetLastError
GetTickCount
GetCurrentThread
GetProcessHeap
GetCurrentThreadId
lstrlenA
GetStartupInfoA
GetProcAddress
TerminateProcess
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
TlsSetValue
TlsAlloc
TlsFree
SetLastError
GetEnvironmentVariableA
GetVersionExA
HeapCreate
VirtualFree
RtlUnwind
InterlockedIncrement
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
GetCPInfo
VirtualAlloc
HeapReAlloc
IsBadWritePtr
LoadLibraryA
SetConsoleCtrlHandler
GetStringTypeA
GetStringTypeW
Sleep
LCMapStringA
LCMapStringW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeZoneInformation
GetLocaleInfoW
CompareStringW
SetEnvironmentVariableA

user32

SetForegroundWindow
CreateWindowExA
GetSubMenu
ReleaseDC
ReleaseCapture
GetWindowRect
SetCursor

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 348KB - Virtual size: 349KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bc7df21bf354de833d359a7800cc6103

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 348KB - Virtual size: 349KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 348KB - Virtual size: 349KB