8287be0b9006f8e249bd56c93d7c9ab2a736da49daeb94c44a82129e4c135c9f

General

Target

8287be0b9006f8e249bd56c93d7c9ab2a736da49daeb94c44a82129e4c135c9f
Size

72KB
MD5

2b5ccd3f81688626fe0cb220fd3c2529
SHA1

d2dbc98ca9451815d7aeeaefb0b99fa8a03ee194
SHA256

8287be0b9006f8e249bd56c93d7c9ab2a736da49daeb94c44a82129e4c135c9f
SHA512

69d76882acbc1f558318cf384e130e2a488aa6182b1a6d46550ea195e9a5f28c69a4acc82862a86a0f8d85b9abb20f3db213f02d088dbcf8924dde3f0f77c23a
SSDEEP

1536:VGJbyMCWnZV5PDdW14FR1111111Bhq0nOxeDh/o:eyMCCVdO4FLqGOxCBo

Score

N/A

Malware Config

Signatures

Files

8287be0b9006f8e249bd56c93d7c9ab2a736da49daeb94c44a82129e4c135c9f
.exe windows x86

7996f0c7e387e61abf8a1209dbebd764

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DoEnvironmentSubstW

oledlg

ord5
ord10
OleUIPasteSpecialW
ord3

kernel32

TlsGetValue
HeapSize
LCMapStringW
IsProcessorFeaturePresent
IsValidLocale
MapViewOfFile
GetProfileIntW
MoveFileWithProgressA
SetEndOfFile
GetOEMCP
GetCommandLineA
HeapSetInformation
GetStartupInfoW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
TerminateProcess
GetCurrentProcess
WideCharToMultiByte
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapFree
Sleep
WriteConsoleW
MultiByteToWideChar
RtlUnwind
GetCPInfo
GetACP
IsValidCodePage
CompareStringW
SetEnvironmentVariableA
LoadLibraryW
HeapAlloc
HeapReAlloc
CreateFileW
CloseHandle
GetStringTypeW

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7996f0c7e387e61abf8a1209dbebd764

Headers

DLL Characteristics

File Characteristics

Imports

shell32

oledlg

kernel32

Sections

.text Size: 37KB - Virtual size: 36KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 6KB - Virtual size: 9KB

.rsrc Size: 163KB - Virtual size: 162KB

.text
Size: 37KB - Virtual size: 36KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 6KB - Virtual size: 9KB

.rsrc
Size: 163KB - Virtual size: 162KB