519b2ffdccc1ac9f10be2050671370439dfaa1c195e595d1c5e0f76811179e0c

General

Target

519b2ffdccc1ac9f10be2050671370439dfaa1c195e595d1c5e0f76811179e0c
Size

135KB
MD5

168e0572dec3d4a8dbc273b625908a51
SHA1

0670f785ccfb3a8d8b497817d38139003ff79c52
SHA256

519b2ffdccc1ac9f10be2050671370439dfaa1c195e595d1c5e0f76811179e0c
SHA512

71f3b339d4892f72e2f712ef94e8fad03e9f845440874dab1ba71413921865d9d7b81edc43c334b4b5cc26dc65f5e73cf3799011abd400c0c4d09c566c15e772
SSDEEP

3072:aW+dPMTpTyKKqxiywklQppB3bvBvJoCcHjEVCzqWIJ:/IPwOdqxijd3TJQHjVzdIJ

Score

N/A

Malware Config

Signatures

Files

519b2ffdccc1ac9f10be2050671370439dfaa1c195e595d1c5e0f76811179e0c
.exe windows x86

5354fd166e89bfd234fdc4f55aeb2908

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryA
CompareFileTime
CloseHandle
GetFileTime
CreateFileA
CreateDirectoryA
GetProcAddress
LoadLibraryA
WaitForSingleObject
CreateProcessA
SetEnvironmentVariableA
FindFirstFileA
FreeLibrary
FindClose
RtlUnwind
RaiseException
GetSystemTimeAsFileTime
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapAlloc
HeapFree
SetUnhandledExceptionFilter
GetLastError
ExitProcess
TerminateProcess
GetCurrentProcess
WideCharToMultiByte
WriteFile
FlushFileBuffers
HeapReAlloc
HeapSize
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetFilePointer
CompareStringA
MultiByteToWideChar
GetCPInfo
CompareStringW
GetACP
GetOEMCP
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
InterlockedExchange
VirtualQuery
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
SetEndOfFile
ReadFile
GetLocaleInfoA
VirtualProtect
GetSystemInfo
LCMapStringA
LCMapStringW

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5354fd166e89bfd234fdc4f55aeb2908

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 2KB - Virtual size: 8KB

.rsrc Size: 69KB - Virtual size: 72KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 2KB - Virtual size: 8KB

.rsrc
Size: 69KB - Virtual size: 72KB