8e1bbf2e50308978e9f1e82e754a0e9a0621cf2d598eeee96fc4bb1058a22ba7

Sharing

Copy URL

Twitter E-mail

General

Target

8e1bbf2e50308978e9f1e82e754a0e9a0621cf2d598eeee96fc4bb1058a22ba7
Size

308KB
MD5

43ed52c5116fc2309f6a42feff05d38e
SHA1

ba115ce7246834965b6dfeba045ee16a43355b36
SHA256

8e1bbf2e50308978e9f1e82e754a0e9a0621cf2d598eeee96fc4bb1058a22ba7
SHA512

cd05ed3767aad9bad45f1f664b7b66e5c0eef594a76d4b31c392bdc663b950e2deff0698409c87fec4f32500dcc67dfafbc91be5321a6323ce4e9af1c44c8b93
SSDEEP

6144:b2wGdz4O+IJa/t7y4UQ/xlMfZFjNmsHVtj3V2pHG:b2wGdzBm1SZFjNh1xVuH

Score

N/A

Malware Config

Signatures

Files

8e1bbf2e50308978e9f1e82e754a0e9a0621cf2d598eeee96fc4bb1058a22ba7
.exe windows x86

4251172245de804b1f5aa731d2965cd2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceW
LoadResource
GetModuleHandleW
WriteFile
FreeConsole
CreateFileW
LockResource
CloseHandle
WideCharToMultiByte
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
MultiByteToWideChar
GetStringTypeW
GetLastError
HeapFree
GetSystemTimeAsFileTime
GetCommandLineA
GetCPInfo
RaiseException
RtlUnwind
HeapAlloc
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetProcAddress
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
IsDebuggerPresent
GetStdHandle
GetFileType
GetProcessHeap
ExitProcess
GetModuleHandleExW
AreFileApisANSI
ReadFile
SetFilePointerEx
FlushFileBuffers
GetConsoleCP
GetConsoleMode
GetCurrentThreadId
HeapSize
GetModuleFileNameA
GetModuleFileNameW
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsValidCodePage
GetACP
GetOEMCP
HeapReAlloc
LoadLibraryExW
ReadConsoleW
SetStdHandle
WriteConsoleW
WaitForSingleObject
GetExitCodeProcess
CreateProcessA
GetFileAttributesExW
SetEnvironmentVariableA
OutputDebugStringW

Sections

.text
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4251172245de804b1f5aa731d2965cd2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 118KB - Virtual size: 117KB

.rdata Size: 35KB - Virtual size: 34KB

.data Size: 7KB - Virtual size: 15KB

.rsrc Size: 139KB - Virtual size: 139KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 118KB - Virtual size: 117KB

.rdata
Size: 35KB - Virtual size: 34KB

.data
Size: 7KB - Virtual size: 15KB

.rsrc
Size: 139KB - Virtual size: 139KB

.reloc
Size: 7KB - Virtual size: 7KB