63b7814f93b5d76e50a37ff45f719beca436ce0980858fda7492561247a721ca

Sharing

Copy URL

Twitter E-mail

General

Target

63b7814f93b5d76e50a37ff45f719beca436ce0980858fda7492561247a721ca
Size

138KB
MD5

a7a92416b1fac1199b3e9b7290bb8b71
SHA1

3c03b4f626d82908d281b2615c7728ff7536dd57
SHA256

63b7814f93b5d76e50a37ff45f719beca436ce0980858fda7492561247a721ca
SHA512

1253db9c29379fd969dcaf8560cb9c92eb443d9669c036cfce992082613088edeadae2da48d4139497aa5f30acb659093eaab997b8ce08b3f94e110fef53a36b
SSDEEP

3072:TazlT6yKHV3NBsn5mOqHd7rKV67t0GOpko6D1z47Q2:Ul613NBkS7OV/ppkoEBQl

Score

N/A

Malware Config

Signatures

Files

63b7814f93b5d76e50a37ff45f719beca436ce0980858fda7492561247a721ca
.exe windows x86

f219cd58bf0ced96aa9dd93360d9759a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalShrink
CreateFileMappingW
ReleaseSemaphore
ConvertThreadToFiber
SetPriorityClass
ContinueDebugEvent
GetNamedPipeHandleStateW
GetThreadPriority
EncodeSystemPointer
GetCommandLineW
GetCommandLineA
GlobalUnfix
IsSystemResumeAutomatic
GlobalUnWire
GetStdHandle
CreateFiberEx
QueryMemoryResourceNotification
SetFileApisToANSI
CreateNamedPipeW
GetDevicePowerState
GetFileInformationByHandle
GetEnvironmentStringsW
GetLastError
MulDiv
CreateMemoryResourceNotification
EraseTape
RtlCaptureStackBackTrace
IsWow64Process
GetMailslotInfo
FreeEnvironmentStringsW
GetThreadContext
GetCommMask
SetSystemPowerState
TransmitCommChar
LocalCompact
SetProcessWorkingSetSize
GlobalCompact
SetLastError
ConvertFiberToThread
CancelIo
ReplaceFileA
GetModuleFileNameW
GetCommTimeouts
FindNextChangeNotification
CreateIoCompletionPort
GlobalUnlock
FreeUserPhysicalPages
GetFileTime
CreateTimerQueue
GetCurrentProcessId
SetMessageWaitingIndicator
GetProcessHeap
GlobalDeleteAtom
GetTapeStatus
DisableThreadLibraryCalls
FreeEnvironmentStringsA
GetAtomNameW
SetSystemTimeAdjustment
UnlockFileEx
GetProcessVersion
HeapAlloc
InterlockedDecrement
GetCPInfo
GetVersionExA
GetStartupInfoA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapFree
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetModuleFileNameA
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedIncrement
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetCurrentThreadId
SetUnhandledExceptionFilter
GetEnvironmentStrings
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
InitializeCriticalSection
OutputDebugStringA
RtlUnwind
LoadLibraryExA
GetACP
GetOEMCP
GetLocaleInfoA
VirtualProtect
GetSystemInfo
VirtualQuery
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
Sleep

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f219cd58bf0ced96aa9dd93360d9759a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 42KB - Virtual size: 41KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 6KB - Virtual size: 13KB

.rsrc Size: 80KB - Virtual size: 79KB

.text
Size: 42KB - Virtual size: 41KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 6KB - Virtual size: 13KB

.rsrc
Size: 80KB - Virtual size: 79KB