4f287947610f6b59828aec7012fbb34369ab95e959e7b850e761848774b66204

Sharing

Copy URL Twitter E-mail

General

Target

4f287947610f6b59828aec7012fbb34369ab95e959e7b850e761848774b66204
Size

276KB
MD5

093323186a6eea95cef1a6df7095a3df
SHA1

00e16216cfc10273b83643d0c76a37284db205c7
SHA256

4f287947610f6b59828aec7012fbb34369ab95e959e7b850e761848774b66204
SHA512

c7ac9186452edd9289d59bec9df56fd204f2bdb379d9f69934c47f0eeb7de42efdadb04dbeb4708b824f1ee07a0526f44e5d9c22efb9191ae4bd485e5680c742
SSDEEP

6144:7lqW2DUmIkMva9jtrnpH7bxnI6MFX7WmSAGJ7oqx/V:hU/0a95rpP66UrrSAM1

Score

N/A

Malware Config

Signatures

Files

4f287947610f6b59828aec7012fbb34369ab95e959e7b850e761848774b66204
.exe windows x86

42b477c9cded39822281730b899be6f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostMessageA
InvalidateRect
OpenClipboard
ValidateRect
BeginPaint
DestroyMenu
GetSystemMetrics
MapWindowPoints

ole32

CoRevokeClassObject
OleUninitialize
CoInitialize
OleInitialize

loadperf

InstallPerfDllA

lz32

LZStart
CopyLZFile
LZOpenFileA
LZRead
LZClose
LZDone
LZInit
LZSeek

kernel32

GetCurrentThreadId
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
ReadFile
SetEndOfFile
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetTimeZoneInformation
CreateFileA
FlushFileBuffers
SetStdHandle
GetOEMCP
GetACP
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetCPInfo
WriteConsoleW
VirtualProtect
LoadLibraryA
GetSystemInfo
ExpandEnvironmentStringsA
GetVolumeInformationA
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
HeapFree
HeapReAlloc
HeapAlloc
GetStartupInfoA
GetCommandLineA
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
TlsAlloc
SetLastError
GetLastError
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
CloseHandle
WriteFile
SetFilePointer
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
InitializeCriticalSection
RtlUnwind
HeapSize
InterlockedExchange
VirtualQuery
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetTimeFormatA
GetDateFormatA

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 377KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

42b477c9cded39822281730b899be6f1

Headers

File Characteristics

Imports

user32

ole32

loadperf

lz32

kernel32

Sections

.text Size: 60KB - Virtual size: 59KB

.rdata Size: 72KB - Virtual size: 71KB

.data Size: 140KB - Virtual size: 377KB

.text
Size: 60KB - Virtual size: 59KB

.rdata
Size: 72KB - Virtual size: 71KB

.data
Size: 140KB - Virtual size: 377KB