9bdca7c851c0367daa64a38159e7632670a140d3e2d94aa7b9fb14396b0a1048

General

Target

9bdca7c851c0367daa64a38159e7632670a140d3e2d94aa7b9fb14396b0a1048
Size

63KB
MD5

8b717d8de3dcc7e0e9958637cc1cd9d2
SHA1

bd17a236cceb84054dd7a202ce5b25bb141618bd
SHA256

9bdca7c851c0367daa64a38159e7632670a140d3e2d94aa7b9fb14396b0a1048
SHA512

fcc6eb881305b3fcfc17daa2dc04f368d464a7c6aaad1f8652bfa12f5edadf0125e7cb9b9fb3447c78bfa49a5d11982c7dc1eb3db8c90293bdaaffa7b133bbd2
SSDEEP

768:pG9r4iGhVLbNxSKoiyhovjdcEDB53qn5x0WSwuLcNz8RYYTqeghrP6pcR:pG9GhVlxjO4jdf05IrYaCYwic

Score

N/A

Malware Config

Signatures

Files

9bdca7c851c0367daa64a38159e7632670a140d3e2d94aa7b9fb14396b0a1048
.exe windows x86

865b3532976f77948a579691454e6542

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
GetProcessHeap
GetSystemDirectoryW
GetLastError
GetProcAddress
VirtualAlloc
GetWindowsDirectoryW
GetTickCount
GetStringTypeW
MultiByteToWideChar
LCMapStringW
HeapReAlloc
HeapSize
WideCharToMultiByte
RtlUnwind
GetModuleHandleW
GetComputerNameW
WaitForSingleObject
GetCPInfo
GetCommandLineW
HeapFree
HeapAlloc
HeapSetInformation
GetStartupInfoW
HeapCreate
ExitProcess
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW
EncodePointer
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
UnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
LeaveCriticalSection
EnterCriticalSection
LoadLibraryW
Sleep
GetACP
GetOEMCP
IsValidCodePage
VirtualQuery

user32

LoadBitmapA
GetForegroundWindow
GetWindowLongW
GetDesktopWindow
IsIconic

Sections

.tet
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rd~ta
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

dat
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

865b3532976f77948a579691454e6542

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.tet Size: 21KB - Virtual size: 20KB

rd~ta Size: 8KB - Virtual size: 8KB

dat Size: 3KB - Virtual size: 7KB

.rsrc Size: 29KB - Virtual size: 29KB

.tet
Size: 21KB - Virtual size: 20KB

rd~ta
Size: 8KB - Virtual size: 8KB

dat
Size: 3KB - Virtual size: 7KB

.rsrc
Size: 29KB - Virtual size: 29KB