701e365bb1085a07f461ab15515795ac4bfddacb8a46d5b09a5d5f3b3f663fc0

Sharing

Copy URL

Twitter E-mail

General

Target

701e365bb1085a07f461ab15515795ac4bfddacb8a46d5b09a5d5f3b3f663fc0
Size

446KB
MD5

134f55b38903af8a8f12207440b8c654
SHA1

3f2016ff3dce8c0496f0509f1bbde6d469a060dc
SHA256

701e365bb1085a07f461ab15515795ac4bfddacb8a46d5b09a5d5f3b3f663fc0
SHA512

9418d13a5675b6f4c6c388b2b27aae14f420fd99eaca1658844144c82e5e931bca6c04d1774d41b7f9cad7e7186c6a7160af92f5f9e638d05aa8017bce38d38c
SSDEEP

6144:Zrg+Fw0nTsoFwFRmOug+3BvnMqWr9xQiKDYUMqcqqlO/u4OeVlMOwtLBXXQmrJPV:fNRPn3tHWIicYU4NUIKWlBHtrJKtDM

Score

N/A

Malware Config

Signatures

Files

701e365bb1085a07f461ab15515795ac4bfddacb8a46d5b09a5d5f3b3f663fc0
.exe windows x86

45911ab0496a97017a919f9b8d374aa8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenWaitableTimerA
GetLocaleInfoW
GetTimeZoneInformation
WriteFile
GetDateFormatA
MapViewOfFile
HeapAlloc
TlsSetValue
SetEnvironmentVariableA
IsDebuggerPresent
SetUnhandledExceptionFilter
WriteConsoleOutputCharacterA
GetThreadContext
GetLogicalDriveStringsW
MultiByteToWideChar
SetConsoleCtrlHandler
GetFileTime
GetFileType
GetLastError
OutputDebugStringW
LCMapStringW
EnterCriticalSection
GetLocaleInfoA
EnumSystemLocalesA
GetDiskFreeSpaceExW
GetStartupInfoA
SetLastError
GetEnvironmentStringsW
GetProcAddress
CreatePipe
GetEnvironmentStrings
TlsFree
FlushInstructionCache
DeleteCriticalSection
ReadFileEx
GetStdHandle
VirtualQuery
InterlockedIncrement
TlsAlloc
IsValidLocale
FreeLibraryAndExitThread
GetStringTypeW
SetHandleCount
GetCommandLineA
HeapReAlloc
InterlockedDecrement
ExitProcess
ContinueDebugEvent
GetCurrentThread
VirtualAlloc
TlsGetValue
QueryPerformanceCounter
GetCurrentProcess
HeapCreate
GetModuleHandleA
FreeLibrary
GetTimeFormatA
GetUserDefaultLCID
GetCurrentThreadId
LCMapStringA
VirtualFree
CompareStringW
GetACP
GetCurrentProcessId
GetModuleFileNameA
HeapSize
CompareStringA
WriteConsoleA
GetTickCount
GetOEMCP
WritePrivateProfileStructA
FreeEnvironmentStringsW
LeaveCriticalSection
IsValidCodePage
RtlUnwind
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
InterlockedExchange
InitializeCriticalSectionAndSpinCount
lstrlen
GetDriveTypeW
GetCPInfo
WideCharToMultiByte
GetModuleHandleW
GetStringTypeA
HeapFree
TerminateProcess
LoadLibraryA
HeapDestroy
Sleep
UnhandledExceptionFilter

advapi32

CryptGetDefaultProviderW
LookupAccountNameA

shell32

SHFormatDrive
ExtractIconEx
ExtractIconExW
RealShellExecuteExW
SHInvokePrinterCommandA
ExtractIconW
SHFileOperationW

user32

DefWindowProcA
ChildWindowFromPoint
CreateMDIWindowA
SetWindowPlacement
SetScrollPos
ScrollWindowEx
WINNLSGetIMEHotkey
GetUserObjectSecurity
GetKeyNameTextA
CallWindowProcW
GetComboBoxInfo
SetParent
WinHelpW
OpenDesktopA
SetWindowContextHelpId
DrawCaption
EnumDisplayDevicesW
GetForegroundWindow
IsWindowEnabled
SystemParametersInfoA
UnhookWindowsHook

Sections

.text
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 311KB - Virtual size: 330KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45911ab0496a97017a919f9b8d374aa8

Headers

File Characteristics

Imports

kernel32

advapi32

shell32

user32

Sections

.text Size: 130KB - Virtual size: 129KB

.data Size: 311KB - Virtual size: 330KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 130KB - Virtual size: 129KB

.data
Size: 311KB - Virtual size: 330KB

.rsrc
Size: 4KB - Virtual size: 3KB