General

Malware Config

Signatures

Files

• 6fdd97ca703c12628b3eb0cb3a0bed5daf10c76a1619613c563aa07cc8f63665

  .exe windows x86

  fefcdd163b1c7a380e21eec951f07627

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  shell32

  ShellExecuteA

  msvcrt

  _initterm

  __setusermatherr

  _adjust_fdiv

  __p__commode

  __getmainargs

  __set_app_type

  _except_handler3

  _controlfp

  _acmdln

  exit

  _XcptFilter

  _exit

  ??2@YAPAXI@Z

  time

  srand

  rand

  _snprintf

  __p__fmode

  kernel32

  GetStartupInfoA

  CreateThread

  WaitForSingleObject

  OutputDebugStringA

  GetModuleFileNameA

  CreateFileA

  WriteFile

  CloseHandle

  GetCurrentDirectoryA

  SetCurrentDirectoryA

  GetModuleHandleA

  Sections

  .text

  Size: 8KB - Virtual size: 4KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 4KB - Virtual size: 860B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 132KB - Virtual size: 128KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE