fc4a6d881ba371f690672135e3004cbe20b2e0e54298da083aee852ae8725d16

General

Target

fc4a6d881ba371f690672135e3004cbe20b2e0e54298da083aee852ae8725d16
Size

152KB
MD5

de17f8d13a535ace37d54f9de42c49c3
SHA1

bf785143223cfa46a851195c42ec1a2ad9880e64
SHA256

fc4a6d881ba371f690672135e3004cbe20b2e0e54298da083aee852ae8725d16
SHA512

f0244deda06931881d4e1a6d5218537a60a9a974d1e28ee78bf0b5eb62a9186d64c646d1f39f0911b6f5063969ef6bfd9683531b3ed57d39d64bb909c7603464
SSDEEP

3072:DyZiVz1bp2NtZbUkPaCgERT6ZNTskl5UAhpi5lsmVmvYbV/P94:wI1bpyUoaCgERTWhp+lssmc/P+

Score

N/A

Malware Config

Signatures

Files

fc4a6d881ba371f690672135e3004cbe20b2e0e54298da083aee852ae8725d16
.exe windows x86

d4c88c92c5e0980ca4971754a530893b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WriteFile
CreateFileA
lstrlenA
OutputDebugStringA
GetProcAddress
LoadLibraryA
IsBadReadPtr
VirtualAlloc
GetProcessHeap
HeapFree
VirtualFree
FreeLibrary
HeapReAlloc
HeapAlloc
RtlUnwind
RaiseException
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
EnterCriticalSection
LeaveCriticalSection
GetLastError
InitializeCriticalSection
IsBadWritePtr
DeleteCriticalSection
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetStdHandle
FlushFileBuffers
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
SetFilePointer
SetEndOfFile
ReadFile
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Exports

Exports

Loader

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dwkupxr
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d4c88c92c5e0980ca4971754a530893b

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 32KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 80KB - Virtual size: 82KB

.rsrc Size: 32KB - Virtual size: 32KB

dwkupxr Size: - Virtual size: 4KB

.text
Size: 32KB - Virtual size: 32KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 80KB - Virtual size: 82KB

.rsrc
Size: 32KB - Virtual size: 32KB

dwkupxr
Size: - Virtual size: 4KB