General

Malware Config

Signatures

Files

• 6bbb27c857695eaf53bf8da0ee58af4d44ae5256e3eb2fbec0db497f28d437a8

  .exe windows x86

  03ecb5e051eaa81dc081100691993c53

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  GlobalLock

  VirtualAlloc

  GetCurrentThreadId

  GetTickCount

  MultiByteToWideChar

  MapViewOfFile

  CloseHandle

  Sleep

  HeapDestroy

  WriteFile

  GetCurrentProcess

  FreeLibrary

  FindClose

  SetFilePointer

  GetLocaleInfoA

  CreateProcessA

  HeapFree

  CompareStringW

  LocalFree

  Sections

  .text

  Size: 368KB - Virtual size: 368KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 1024B - Virtual size: 522B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 722KB - Virtual size: 721KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 32KB - Virtual size: 31KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ