6c418590b456ecc09907214faf18c2fb8d995de0bf94944ff7a10d485e1fd0a6

General

Target

6c418590b456ecc09907214faf18c2fb8d995de0bf94944ff7a10d485e1fd0a6
Size

165KB
MD5

40bc0edfaaabbd7be6b06971b5dfedfc
SHA1

06357ea1cc6c6521f0e8000403aa6ea728c13ed1
SHA256

6c418590b456ecc09907214faf18c2fb8d995de0bf94944ff7a10d485e1fd0a6
SHA512

582b299da295efd5ad5d3d353afc38b5ccc37a569ba7aaf04d050b271dfa4bcdba7aaad37b4b2cf606ecfa167c4b436dc3d0693c80b1183fdd0ca10bddd31009
SSDEEP

3072:Wc8z5SHU7iSLz3GBuYJCYUlLEvMm/CE6ZigYYOEi/A5eHoRzYRciQZsvikzU:iHuSPA0YsLw67ZigYlpSxURciYsvikU

Score

N/A

Malware Config

Signatures

Files

6c418590b456ecc09907214faf18c2fb8d995de0bf94944ff7a10d485e1fd0a6
.exe windows x86

9f8014414d43866745a1e89fbbc6eba2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CancelIo
CloseHandle
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FindClose
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessAffinityMask
GetThreadContext
GetThreadPriority
InterlockedDecrement
InterlockedExchangeAdd
LoadLibraryA
OpenProcess
QueryInformationJobObject
ReleaseSemaphore
ResetEvent
ResumeThread
SetEvent
SetLastError
SetThreadContext
SetThreadPriority
Sleep
SuspendThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
VirtualProtect
WaitForMultipleObjects
WaitForSingleObject

shell32

SHGetFolderPathW
SHFormatDrive

wsock32

WSASetLastError
WSAGetLastError

msvcrt

__dllonexit
_adjust_fdiv
_beginthreadex
_endthreadex
_errno
_ftime
_initterm
_onexit
_setjmp3
_wcreat
calloc
exit
free
longjmp
malloc

Exports

Exports

ADeviceResumePlay
HrGetBodyElement
IsDigit
PszAllocW
SetColumns
SetScissorRect

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f8014414d43866745a1e89fbbc6eba2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shell32

wsock32

msvcrt

Exports

Exports

Sections

.text Size: 54KB - Virtual size: 54KB

.rdata Size: 103KB - Virtual size: 103KB

.data Size: 7KB - Virtual size: 7KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 54KB - Virtual size: 54KB

.rdata
Size: 103KB - Virtual size: 103KB

.data
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 6KB - Virtual size: 5KB