a62084b290d5b95cd5ead8388be9d3b0610b37b743d8320edf8cabc3851ca696

General

Target

a62084b290d5b95cd5ead8388be9d3b0610b37b743d8320edf8cabc3851ca696
Size

222KB
MD5

c6afac64fd9fa6fef0be14424c81521e
SHA1

1ae9d935092648e834ce80aa417c32b023a169c7
SHA256

a62084b290d5b95cd5ead8388be9d3b0610b37b743d8320edf8cabc3851ca696
SHA512

86fb21014d26be6025379cad58fdd7680ee3a18964ab4ae90f1a026a135c175ecc80fada3e8ef2680d19304ccc25ab62398fb1580a26058d796e073927156c3c
SSDEEP

6144:oWN2M88//F7rFyVNCgEANUlw0wJdle//+HQMTIYXH6:o+209+l7NUlw0wJU/+wM8YXH

Score

N/A

Malware Config

Signatures

Files

a62084b290d5b95cd5ead8388be9d3b0610b37b743d8320edf8cabc3851ca696
.exe windows x86

9deb3dff6f248dd429dd8b328bf0ac2d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetPrivateProfileSectionNamesA
GetModuleFileNameA
WriteProcessMemory
GetWindowsDirectoryA
GetSystemTime
MapViewOfFile
GetCPInfo
GetEnvironmentStringsW
LockFileEx
QueryPerformanceCounter
GetTimeFormatW
GetShortPathNameW
CopyFileA
SystemTimeToFileTime
GetDateFormatA
HeapCreate
Module32First
GetLogicalDrives
GetTimeFormatA
GetThreadLocale
SetLastError
ExitProcess
GetTimeZoneInformation
WaitForSingleObject
TlsSetValue
GetFileType
OutputDebugStringA
LoadLibraryExA
MulDiv
GetSystemTimeAsFileTime
CreateProcessA
SystemTimeToFileTime
RtlUnwind
QueryPerformanceFrequency
GetStringTypeA
MapViewOfFileEx
lstrcmpW
SleepEx
SetEvent
GetCommandLineA
GetConsoleCP
SetErrorMode
FlushFileBuffers
FindNextFileW
FreeEnvironmentStringsW
GetCurrentProcessId
SetProcessAffinityMask
ReleaseSemaphore
GetLastError
LocalFree
GetProfileStringA
GetStringTypeW
CreateFileW
CreateToolhelp32Snapshot
SizeofResource
GetTempPathW
LoadResource
MoveFileExW
GetFileSizeEx
GetCurrentDirectoryA
GetVersionExA

ntdll

RtlGetProcessHeaps
RtlFillMemory
ZwQuerySystemInformation
RtlCompareString
NtCreateSection
RtlExitUserThread
NtSetSystemInformation
RtlCancelTimer
RtlCompareUnicodeString

Sections

.text
Size: 171KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9deb3dff6f248dd429dd8b328bf0ac2d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ntdll

Sections

.text Size: 171KB - Virtual size: 171KB

.data Size: 48KB - Virtual size: 47KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 171KB - Virtual size: 171KB

.data
Size: 48KB - Virtual size: 47KB

.rsrc
Size: 2KB - Virtual size: 4KB