5a24e7ab37d88e7c0ed1a9851dfd6b7d8e1651cb5d3994b39250afb0fd606b49

General

Target

5a24e7ab37d88e7c0ed1a9851dfd6b7d8e1651cb5d3994b39250afb0fd606b49
Size

75KB
MD5

869d61ec3e79b8b8bf5bc99f40cb1c6b
SHA1

aff6b5264cc6577ed96f687cfab7e29c0e20c955
SHA256

5a24e7ab37d88e7c0ed1a9851dfd6b7d8e1651cb5d3994b39250afb0fd606b49
SHA512

2daf2e8d659c38aacb1da0bfba83fb92fabe0248d6995411897ca046692878899a359f44f77062b8d84364525f7269a3477c0bb964537556d4fc948dcbf05dc8
SSDEEP

1536:f6mPcSBpJSlFPhlCUcYgd6LXWwV3yk88X88V1R0HBg5J+QtHr:ftrSlBF6wWwV3i8XFV1R0HG5J+I

Score

N/A

Malware Config

Signatures

Files

5a24e7ab37d88e7c0ed1a9851dfd6b7d8e1651cb5d3994b39250afb0fd606b49
.exe windows x86

1f0d993cca47560a05e6d59dff4e983d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringW
HeapSize
FlushFileBuffers
CreateFileW
GetStringTypeW
SetEnvironmentVariableA
LoadLibraryW
CloseHandle
GetLastError
GetLocalTime
HeapCreate
GetCurrentProcess
LCMapStringW
HeapAlloc
GetSystemTimeAsFileTime
GetCommandLineA
HeapSetInformation
GetStartupInfoW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
TerminateProcess
WideCharToMultiByte
GetTimeZoneInformation
SetStdHandle
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
GetFileType
WriteFile
GetConsoleCP
GetConsoleMode
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
GetModuleHandleW
SetLastError
GetCurrentThreadId
InterlockedDecrement
GetProcAddress
Sleep
ExitProcess
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
DeleteCriticalSection
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
HeapFree
GetCPInfo
WriteConsoleW
MultiByteToWideChar
SetFilePointer
RtlUnwind
GetACP
GetOEMCP
IsValidCodePage
HeapReAlloc
IsProcessorFeaturePresent

user32

GetMessageA
LoadIconA
TranslateMessage
LoadAcceleratorsA
DispatchMessageA

Sections

.text
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f0d993cca47560a05e6d59dff4e983d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 38KB - Virtual size: 37KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 27KB - Virtual size: 34KB

.rsrc Size: 512B - Virtual size: 436B

.text
Size: 38KB - Virtual size: 37KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 27KB - Virtual size: 34KB

.rsrc
Size: 512B - Virtual size: 436B