70e9ab0ed6a12023131a3b300f18a3ba398490cc9cd751b52ecb45be8c40ca6a

General

Target

70e9ab0ed6a12023131a3b300f18a3ba398490cc9cd751b52ecb45be8c40ca6a
Size

177KB
MD5

212e6a8adc13034fea71854f6443f3f0
SHA1

a310ef926b3fbabef423d286809cd20db248039b
SHA256

70e9ab0ed6a12023131a3b300f18a3ba398490cc9cd751b52ecb45be8c40ca6a
SHA512

998d0676db546beb8b86312e32189565568eb5eadc21cfae116d71f70332be133280df9ce0f8d5d76aad420f5d73a2976c7a8b1d1e61bd91ddab9906971845b0
SSDEEP

3072:AKxA7RWviWAJZZHtN1wU7PUtxp6eTs01qFHl:A/7RTZZT1wW0xp6eI0INl

Score

N/A

Malware Config

Signatures

Files

70e9ab0ed6a12023131a3b300f18a3ba398490cc9cd751b52ecb45be8c40ca6a
.exe windows x86

37b970ccbc6b98038d22f7bee2dce4dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
FreeLibrary
GetExitCodeProcess
LoadLibraryA
OpenProcess
CloseHandle
Sleep
GetTickCount
GetCurrentProcessId
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetCurrentProcess
GetLastError
CreateToolhelp32Snapshot
Process32First
GetModuleFileNameA
GetModuleHandleA
Process32Next
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
ExitProcess
WriteFile
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetConsoleCP
GetConsoleMode
SetFilePointer
FlushFileBuffers
HeapSize
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualAlloc
HeapReAlloc
CreateFileA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
MultiByteToWideChar
SetStdHandle
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

37b970ccbc6b98038d22f7bee2dce4dd

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 64KB - Virtual size: 63KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 13KB

.rsrc Size: 76KB - Virtual size: 76KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 13KB

.rsrc
Size: 76KB - Virtual size: 76KB