3710cb127d579b664c2e51824a682aa464637934939d37ad2716e2801c8e5096

Sharing

Copy URL

Twitter E-mail

General

Target

3710cb127d579b664c2e51824a682aa464637934939d37ad2716e2801c8e5096
Size

403KB
MD5

3b3f15a324eb71990ff318a9400f2916
SHA1

ea77333b991e5dc07cbaf01d45ddab8cad428fe8
SHA256

3710cb127d579b664c2e51824a682aa464637934939d37ad2716e2801c8e5096
SHA512

f1b5047f4674b59ffd87c56c2efb117055a0ed016a994978f9c10d5c422dbce805c9269803b65de47df75b49da6b1c013309074c2780b30ad51fa8796fac14d6
SSDEEP

1536:Ema7VL95xgPdBPYXKQZwpzewVZkV5tr1kcHo4FVi7uj7Yt0ZZC3b3BmsPWcQugyw:o5L9WGZyyp5tVYtfZ/81QURGq2LGes

Score

N/A

Malware Config

Signatures

Files

3710cb127d579b664c2e51824a682aa464637934939d37ad2716e2801c8e5096
.exe windows x86

fe5dfb7e8929d761851a5a9d8717fb6b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetTickCount
VirtualFree
GetProcessHeap
FlushInstructionCache
GetTempPathW
OpenMutexW
VirtualAlloc
GetModuleFileNameA
OutputDebugStringA
GetDiskFreeSpaceExA
GetVersion
GetCurrentProcess
FlushFileBuffers
CloseHandle
CreateFileA
HeapSize
GetLocaleInfoA
GetCPInfo
GetDriveTypeW
GetTempPathA
GetCommandLineW
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
HeapCreate
HeapFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
SetFilePointer
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
EnterCriticalSection
LeaveCriticalSection
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryA
InitializeCriticalSectionAndSpinCount
HeapAlloc
HeapReAlloc
RtlUnwind
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

user32

GetWindowTextLengthW
IsIconic
LoadBitmapA
LoadCursorW
GetForegroundWindow
IsWindowUnicode
GetDesktopWindow
GetCursorPos
LoadBitmapW
LoadCursorA

advapi32

RegOpenKeyExA
GetCurrentHwProfileA
GetCurrentHwProfileW

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 340KB - Virtual size: 339KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe5dfb7e8929d761851a5a9d8717fb6b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 35KB - Virtual size: 34KB

.rdata Size: 23KB - Virtual size: 23KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 340KB - Virtual size: 339KB

.text
Size: 35KB - Virtual size: 34KB

.rdata
Size: 23KB - Virtual size: 23KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 340KB - Virtual size: 339KB