26e2751299204b7ea8b872ad888b8ce4581fca4564d717a8976fc111dfe59617

Sharing

Copy URL

Twitter E-mail

General

Target

26e2751299204b7ea8b872ad888b8ce4581fca4564d717a8976fc111dfe59617
Size

149KB
MD5

4e5743fda00b8fbc9d8404a8191bc6df
SHA1

193cf28269e71e68a97f88fd58efc14ef1360543
SHA256

26e2751299204b7ea8b872ad888b8ce4581fca4564d717a8976fc111dfe59617
SHA512

7ef0ffa53cf29a2d25dfef9b55575f18d0c8c72e36c4b9a83a0c5d6a42b4572f24d14dc969512627733ada73fda726fa35a7a691c45716a311f72663db5773bf
SSDEEP

3072:7znZ8V7nVBou5tEhRBr2HOaigW1957nFqihYqysXnXvNQImK:7zaVbVqJ6w57nlVXXPL

Score

N/A

Malware Config

Signatures

Files

26e2751299204b7ea8b872ad888b8ce4581fca4564d717a8976fc111dfe59617
.exe windows x86

830f9224a0f77120d9efb3ccff27cc5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFiber
GetTapeParameters
LockResource
GetProcessTimes
LocalShrink
GetProcessIoCounters
TransmitCommChar
SetTapeParameters
GetFileSize
LocalUnlock
IsWow64Process
GetProcessHeap
EraseTape
GetCommTimeouts
GetCurrentProcess
PostQueuedCompletionStatus
ConvertThreadToFiber
CreateIoCompletionPort
GetCommandLineA
SetSystemTimeAdjustment
LocalCompact
CancelWaitableTimer
GetProcessId
EncodeSystemPointer
SetHandleCount
FindFirstFileExW
AssignProcessToJobObject
ClearCommBreak
GetModuleFileNameA
GetNumaNodeProcessorMask
WTSGetActiveConsoleSessionId
CreateJobSet
CreateFileMappingW
FlushInstructionCache
ReleaseSemaphore
ConvertFiberToThread
OpenProcess
ResetWriteWatch
IsProcessInJob
GetLogicalDrives
GetFileType
CreateTimerQueue
ReadFileScatter
SetProcessPriorityBoost
GetCommandLineW
EncodePointer
CreateFiberEx
PrepareTape
ClearCommError
GetProcessHandleCount
SetMailslotInfo
GetDevicePowerState
GetThreadPriority
GetFileTime
SetMessageWaitingIndicator
TlsGetValue
RtlCaptureStackBackTrace
InitAtomTable
GetLastError
MultiByteToWideChar
WideCharToMultiByte
HeapAlloc
InterlockedDecrement
GetCPInfo
GetVersionExA
GetStartupInfoA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InterlockedIncrement
GetACP
GetOEMCP
GetProcAddress
GetModuleHandleW
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
OutputDebugStringA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapFree
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetLocaleInfoA
Sleep
InitializeCriticalSection
RtlUnwind
LoadLibraryExA
VirtualProtect
GetSystemInfo
VirtualQuery

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

830f9224a0f77120d9efb3ccff27cc5b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 109KB - Virtual size: 109KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 3KB - Virtual size: 11KB

.rsrc Size: 26KB - Virtual size: 25KB

.text
Size: 109KB - Virtual size: 109KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 3KB - Virtual size: 11KB

.rsrc
Size: 26KB - Virtual size: 25KB