315b4dc095c90ff8f215d04472216c9a5b51de7f5add319bac364f4821935bc1

Sharing

Copy URL Twitter E-mail

General

Target

315b4dc095c90ff8f215d04472216c9a5b51de7f5add319bac364f4821935bc1
Size

152KB
MD5

e5d31bbac6112a273804f3ad28573a75
SHA1

6886bc379bafbc4ef2ff9a16e6c299fcb79d652f
SHA256

315b4dc095c90ff8f215d04472216c9a5b51de7f5add319bac364f4821935bc1
SHA512

0dcaf3e21fa54d6978f0375ad613aa6e06fbe3b8cec23185a02f01fa4b98e8c15720f86ad3204f32809aec8fe6b6f37f6b72768cecc5050004e4380430edf1f3
SSDEEP

1536:9qu81e2DuXgz3ays2EuCfSwaXW6lvXvAyDRj2cKevAta//1QcW+YMw9CjpllbfAQ:Ly6uYQBXvNNCcKDMWcLrjplQ8L31a6

Score

N/A

Malware Config

Signatures

Files

315b4dc095c90ff8f215d04472216c9a5b51de7f5add319bac364f4821935bc1
.exe windows x86

15ddac57c969eb25324bcb66bbfbfc2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetModuleHandleA
Sleep
GetProcAddress
InterlockedExchange
VirtualFree
ResumeThread
GetTickCount
CloseHandle
SetEvent
SetFirmwareEnvironmentVariableA
CreateMutexA
GetSystemTime
GetTempPathA
GetConsoleMode
SetConsoleMode
ReadConsoleInputA
WriteConsoleA
HeapSize
RaiseException
GetSystemDirectoryA
LocalFree
HeapAlloc
RtlUnwind
GetStartupInfoA
GetCommandLineA
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapFree
GetLastError
WriteFile
HeapDestroy
HeapCreate
HeapReAlloc
IsBadWritePtr
ReadFile
TlsFree
SetLastError
GetCurrentThreadId
TlsSetValue
TlsGetValue
TlsAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
InitializeCriticalSection
SetFilePointer
SetStdHandle
FlushFileBuffers
MultiByteToWideChar
VirtualProtect
GetSystemInfo
VirtualQuery
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
CreateFileA

user32

DestroyWindow
EnableWindow
LoadImageA
PostMessageA
LoadBitmapA
GetSystemMetrics
MessageBoxA

winmm

midiStreamOut
midiOutReset
midiStreamRestart
joySetCapture

dnsapi

DnsAcquireContextHandle_A

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

15ddac57c969eb25324bcb66bbfbfc2a

Headers

File Characteristics

Imports

kernel32

user32

winmm

dnsapi

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 10KB

.tls Size: 12KB - Virtual size: 8KB

.rsrc Size: 68KB - Virtual size: 64KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 10KB

.tls
Size: 12KB - Virtual size: 8KB

.rsrc
Size: 68KB - Virtual size: 64KB