abcf59070a8b94ab1afcb31a9484724417a59fefa7bab9ec7a02ea8571069304

General

Target

abcf59070a8b94ab1afcb31a9484724417a59fefa7bab9ec7a02ea8571069304
Size

151KB
MD5

47e12f3378da7738206801a6eae20701
SHA1

e2e512db26913f4aed818e1072feec9b38248c14
SHA256

abcf59070a8b94ab1afcb31a9484724417a59fefa7bab9ec7a02ea8571069304
SHA512

a030fe09ce081043cb44fab2ae3afc9fa307b3893fd07d330040f0c553b8a8fa6b47c55974922216bea86f3549f3b6cdde279a5af8d5a7030b06f96466ff326a
SSDEEP

3072:4cNQyN8fI6mTxbHorjdovO/hZL0IEJCsD21vhmlTI8aHKFaBt:4NI6mdb9RIETaAaKF+t

Score

N/A

Malware Config

Signatures

Files

abcf59070a8b94ab1afcb31a9484724417a59fefa7bab9ec7a02ea8571069304
.exe windows x86

a63439a89250d8856cd0bd2f75a54e71

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteAtom
GetModuleHandleA
GetDiskFreeSpaceW
GetCommandLineA
SwitchToFiber
GetStartupInfoA
SetCommBreak
CreateProcessA
SetThreadAffinityMask
GetCommState
CopyFileW
Process32First
CreateHardLinkA
GetUserDefaultUILanguage
AddAtomW
GlobalFindAtomW
EnumSystemCodePagesA
EnumSystemLanguageGroupsA
GetCommandLineW
DebugBreak
GetVolumeNameForVolumeMountPointA
OpenFileMappingA
SetLocalTime
LocalLock
GetLocaleInfoW
IsBadStringPtrA

msvcrt

_acmdln
_tell
_iob
exit
__p__commode
__set_app_type
_snwprintf
_finite
memcpy
_initterm
iswupper
_exit
_ismbbalnum
_XcptFilter
__getmainargs
_ismbcdigit
_getwch
_execve
_vsnwprintf
_controlfp
_execvp
_snwscanf
towlower
_mbsnbcoll
_adjust_fdiv
__p__fmode
__setusermatherr
_set_error_mode
_except_handler3

Sections

.text
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a63439a89250d8856cd0bd2f75a54e71

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 131KB - Virtual size: 130KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 88KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 131KB - Virtual size: 130KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 88KB

.rsrc
Size: 8KB - Virtual size: 8KB