f1e40b2c8e6669a1886f33644e99e43f862c7225e8704a959a325fb333c13741

General

Target

f1e40b2c8e6669a1886f33644e99e43f862c7225e8704a959a325fb333c13741
Size

52KB
MD5

071b380d6b422dd83f14fa0a3bceb347
SHA1

b54b06e01c6f735e98d17b156ee8c7a2437b2d68
SHA256

f1e40b2c8e6669a1886f33644e99e43f862c7225e8704a959a325fb333c13741
SHA512

ba8ea9a019c5030c4560aef923f3de527ed403a6d2ef1fbcb98391c5dd90d9ba1779d482c3f01f4920dd34a8f32559237ec5e88247ba79d5813fadc6279ee2f6
SSDEEP

768:W6kUlQov/FX4MUI99pOAe9IRyzJqezkd14D5cMeR+DEmF3T9:W6LlBv/o2RylqezC146bItZ

Score

N/A

Malware Config

Signatures

Files

f1e40b2c8e6669a1886f33644e99e43f862c7225e8704a959a325fb333c13741
.exe windows x86

7fdcbb2f0fbd29a7b3bb1da2899d437c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

SetPropW
PostMessageW
ShowOwnedPopups
FindWindowW

kernel32

GetCPInfoExA
LoadLibraryA
InterlockedExchange
FreeLibrary
GetProcAddress
GetLogicalDriveStringsW
GetCurrentProcessId
GetCurrentThread
GetLogicalDrives
GetModuleHandleA
GetLastError
ExitThread
SetConsoleTitleA
GetDefaultCommConfigW
FindResourceA
RegisterWaitForSingleObject
GetTapePosition
ReadConsoleOutputCharacterW
UnmapViewOfFile
SetFileTime
GetLogicalDriveStringsW
GetGeoInfoA
TerminateThread
WaitForSingleObjectEx
LCMapStringA
SetLastError
CancelWaitableTimer
IsBadStringPtrA
GetModuleFileNameA
OpenJobObjectA
CreateTimerQueueTimer
GetDateFormatW
AreFileApisANSI
QueryPerformanceCounter
GetComputerNameW
GetCPInfo
RaiseException
CreateFileMappingW
GetProcessWorkingSetSize
VirtualAllocEx
SetVolumeLabelW
BuildCommDCBW
Module32FirstW
IsValidLocale
GetTimeFormatA
GetTimeZoneInformation
EnumCalendarInfoExW
ReplaceFileW
EndUpdateResourceA
GetPrivateProfileSectionNamesW
CopyFileExW
SetProcessShutdownParameters
LocalAlloc

oleaut32

VarBstrCmp

pdh

PdhOpenQueryA

msvcrt

rename
wscanf
fgetws
mbstowcs
iswspace
free
iswcntrl
puts

Sections

.text
Size: 44KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fdcbb2f0fbd29a7b3bb1da2899d437c

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

oleaut32

pdh

msvcrt

Sections

.text Size: 44KB - Virtual size: 48KB

.data Size: 512B - Virtual size: 8KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 44KB - Virtual size: 48KB

.data
Size: 512B - Virtual size: 8KB

.rsrc
Size: 6KB - Virtual size: 5KB