4abaff74d9199149781bdf9c8a436e7ec559ab73d4a7daad2b4421359b5bb11b

General

Target

4abaff74d9199149781bdf9c8a436e7ec559ab73d4a7daad2b4421359b5bb11b
Size

64KB
MD5

dafc8350c92fa8825625ce59164b484b
SHA1

d7374eb4a8e341f2e7cd60501882c19c974ca321
SHA256

4abaff74d9199149781bdf9c8a436e7ec559ab73d4a7daad2b4421359b5bb11b
SHA512

89496e16f34f7a52307de676b01f15b8a72b1ecf7191cc59e10ea4b708694d329197729b1ad10f77b2f7181e4172685ddc32bfee7fd6f27fba84543ce24c0275
SSDEEP

768:mHFz/HqG3OUDtyhUsS836/m+MkDrvxlkYA6gN1cNnu3BKkg5uFWABDEmF3T9:wtKG3EzFKzMkDr5l63YkBKkg58HBtZ

Score

N/A

Malware Config

Signatures

Files

4abaff74d9199149781bdf9c8a436e7ec559ab73d4a7daad2b4421359b5bb11b
.exe windows x86

b30a7bb3f138106368bee28c015d60a0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

pdh

PdhOpenQueryA

oleaut32

VarBstrCmp

user32

SetPropW
ShowOwnedPopups
FindWindowW
PostMessageW

shell32

ShellExecuteExW

kernel32

SetConsoleTitleA
AreFileApisANSI
GetDateFormatW
OpenJobObjectA
IsValidLocale
ReplaceFileW
FindResourceA
IsBadStringPtrA
GetCPInfo
GetModuleFileNameA
GetComputerNameW
GetModuleFileNameA
GetCurrentProcessId
GetCurrentThreadId
GetCurrentThread
GetLogicalDrives
GetModuleHandleA
GetLastError
ExitThread
CancelWaitableTimer
GetTimeZoneInformation
QueryPerformanceCounter
CreateTimerQueueTimer
BuildCommDCBW
GetPrivateProfileSectionNamesW
LCMapStringA
GetTimeFormatA
GetCPInfoExA
EnumCalendarInfoExW
CopyFileExW
GetGeoInfoA
CreateFileMappingW
GetTapePosition
WaitForSingleObjectEx
SetLastError
SetProcessShutdownParameters
GetProcessWorkingSetSize
TerminateThread
GetDefaultCommConfigW
Module32FirstW
EndUpdateResourceA
UnmapViewOfFile
RegisterWaitForSingleObject
VirtualAllocEx
SetFileTime
SetVolumeLabelW
ReadConsoleOutputCharacterW
GetLogicalDriveStringsW

ntdll

iswspace
mbstowcs
_chkstk

msvcrt

free
puts
iswcntrl
rename
fgetws
wscanf

Sections

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b30a7bb3f138106368bee28c015d60a0

Headers

DLL Characteristics

File Characteristics

Imports

pdh

oleaut32

user32

shell32

kernel32

ntdll

msvcrt

Sections

.text Size: 48KB - Virtual size: 48KB

.data Size: 4KB - Virtual size: 8KB

.rsrc Size: 8KB - Virtual size: 5KB

.text
Size: 48KB - Virtual size: 48KB

.data
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 8KB - Virtual size: 5KB