d4fedebda87916685b125ea5ac718917cffc4603b9608400fad70a34e606a0cc

General

Target

d4fedebda87916685b125ea5ac718917cffc4603b9608400fad70a34e606a0cc
Size

765KB
MD5

5ec6f045f1b918b6cc5756e1a9592dd0
SHA1

9b8961e6c4a3e91a7bfa7fbd65741d10880a5b06
SHA256

d4fedebda87916685b125ea5ac718917cffc4603b9608400fad70a34e606a0cc
SHA512

48c7507213a03ca3c8759aa901ddbed874d312ca64cf87922244184d743c2cf2df9830ff8caa3a88bcea3ac43362df870f4c2852ed8fb75d134a713a130eae91
SSDEEP

12288:X59hQDcB/Y8tWybAXUimEJSlOnBjfaQ433izfcaqNWKA8r78Un9Ni:J7QDcB/ntWybwRSQBLd43yzfc9Znr19Q

Score

N/A

Malware Config

Signatures

Files

d4fedebda87916685b125ea5ac718917cffc4603b9608400fad70a34e606a0cc
.exe windows x86

4aa4e118b4c872aa7f11509f4978497c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
ExitProcess
FlushFileBuffers
GetFileSize
GetFullPathNameA
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTempPathA
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
MultiByteToWideChar
SetFilePointer
SetUnhandledExceptionFilter
Sleep
WideCharToMultiByte
WriteFile

msvcrt

_chmod
_close
_fdopen
_fstat
_getpid
_mkdir
_mktemp
_open
_stat
_strdup
_umask
_unlink
__getmainargs
__lc_codepage
__mb_cur_max
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_errno
_exit
_filelengthi64
_flsbuf
_get_osfhandle
_iob
_isctype
_onexit
_osver
_pctype
_setmode
_stricmp
_strnicmp
abort
atexit
atoi
calloc
ctime
exit
fclose
fflush
fgetpos
fopen
fprintf
fputc
fread
free
fseek
fsetpos
ftell
fwrite
getenv
localeconv
malloc
memchr
memcmp
memcpy
memmove
memset
qsort
realloc
signal
sprintf
sscanf
strcat
strchr
strcmp
strcoll
strcpy
strcspn
strerror
strlen
strncat
strncpy
strpbrk
strrchr
strspn
strstr
strtol
strtoul
time
vsprintf
wcslen

user32

CharLowerBuffA

Sections

.text
Size: 595KB - Virtual size: 595KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 21KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 30KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4aa4e118b4c872aa7f11509f4978497c

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 595KB - Virtual size: 595KB

.data Size: 6KB - Virtual size: 6KB

.rdata Size: 132KB - Virtual size: 131KB

.bss Size: - Virtual size: 21KB

.idata Size: 30KB - Virtual size: 31KB

.text
Size: 595KB - Virtual size: 595KB

.data
Size: 6KB - Virtual size: 6KB

.rdata
Size: 132KB - Virtual size: 131KB

.bss
Size: - Virtual size: 21KB

.idata
Size: 30KB - Virtual size: 31KB