6b4717c99953bb099dec93fcdae114aa0ed6ef39f482383e3efd275ca3f61947

General

Target

6b4717c99953bb099dec93fcdae114aa0ed6ef39f482383e3efd275ca3f61947
Size

392KB
MD5

75605fee6089cbdd35a5cad001852fa0
SHA1

7de61635ddc18d965d3ae7713c708ab6d0919a71
SHA256

6b4717c99953bb099dec93fcdae114aa0ed6ef39f482383e3efd275ca3f61947
SHA512

1794c909c95bfe6ae4e1f8f76475f34da6b84694d48a2963b186f71cd04417046bd8a984fe11808773ba14b9c5e9d38a558b62b2daa0723d5eba721c8409d1ad
SSDEEP

6144:WZ+EHlloDTqKV1aELXXgZPJq/VErZ8kIPYJ7gI:j0VgI2gZB2e2I

Score

N/A

Malware Config

Signatures

Files

6b4717c99953bb099dec93fcdae114aa0ed6ef39f482383e3efd275ca3f61947
.exe windows x86

d38c273e066190b65e439a632f37df51

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceW
LoadResource
CreateProcessW
GetModuleHandleW
GetTickCount
WriteFile
GetSystemDirectoryW
Sleep
SizeofResource
CreateFileW
GetTempPathW
LockResource
CloseHandle
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
RaiseException
RtlUnwind
GetLastError
GetModuleHandleA
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapSize
ExitProcess
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryA
InitializeCriticalSection
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW

user32

GetKeyboardState

Sections

.text
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 300KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d38c273e066190b65e439a632f37df51

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 68KB - Virtual size: 64KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 300KB - Virtual size: 298KB

.text
Size: 68KB - Virtual size: 64KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 300KB - Virtual size: 298KB