6a961de239e84808c61b25a3d8e9212788b7ac116b7ca267fdd2be7a7865f702

General

Target

6a961de239e84808c61b25a3d8e9212788b7ac116b7ca267fdd2be7a7865f702
Size

150KB
MD5

40ad08a727e110a5358e9de4e48beb8b
SHA1

ecfd82bf3918c0d24f3006c8f145366a452c6de0
SHA256

6a961de239e84808c61b25a3d8e9212788b7ac116b7ca267fdd2be7a7865f702
SHA512

a386d002d0f128117de98baf4578453eb518b9a6d21298661752356243d336c6f24806cd1531c356388e22dac77d09e154f27070cc8a0570720ef73858008200
SSDEEP

1536:N1O/esjj4EaaiLn/DZHBOgCXhUbkf1IPiK5NhCXhiIuOH5Y+q1jGJyVZGC86jOr8:NBmj4+yD143UO1UiEGL76+qFWyVg6R

Score

N/A

Malware Config

Signatures

Files

6a961de239e84808c61b25a3d8e9212788b7ac116b7ca267fdd2be7a7865f702
.exe windows x86

436598db98cc238cba4371640e73a224

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
QueryPerformanceCounter
HeapCreate
GetCurrentThreadId
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
DeleteCriticalSection
UnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapFree
RtlUnwind
HeapSize
LCMapStringW
MultiByteToWideChar
GetStringTypeW
HeapAlloc
HeapReAlloc
IsProcessorFeaturePresent
GetCurrentProcessId
ExitProcess
GetModuleHandleA
LoadLibraryW
IsBadReadPtr
GetProcessHeap
GetComputerNameA
SetFileShortNameA
OutputDebugStringA
LoadLibraryA
GetProcAddress
SetLastError
GetLastError
Sleep
GetTickCount
GetModuleHandleW
InterlockedDecrement
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
GetCommandLineA
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
DecodePointer
WriteFile
GetStdHandle
VirtualQuery

user32

ActivateKeyboardLayout
CheckMenuItem
CheckMenuRadioItem
MessageBoxA
ChangeClipboardChain
SetLayeredWindowAttributes

gdi32

DeleteDC
GetDeviceCaps
SetEnhMetaFileBits

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

436598db98cc238cba4371640e73a224

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 93KB - Virtual size: 93KB

.data Size: 3KB - Virtual size: 6KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 93KB - Virtual size: 93KB

.data
Size: 3KB - Virtual size: 6KB

.rsrc
Size: 8KB - Virtual size: 8KB