a1fd6c3b3e5f6a4a30c50f3bcb3d3826b4be125a799c1d4c2f1564633706d44b

General

Target

a1fd6c3b3e5f6a4a30c50f3bcb3d3826b4be125a799c1d4c2f1564633706d44b
Size

364KB
MD5

c26a8349ec506c03051fb0003faaaded
SHA1

1cf0927a9a72fa2d04f915e3a98f11f369ca76d0
SHA256

a1fd6c3b3e5f6a4a30c50f3bcb3d3826b4be125a799c1d4c2f1564633706d44b
SHA512

2fd140f0d81b36e699ad792d7cd7eaf5e1794096cf8ebb21bb96d9ab728aa694fbc85506c8c93ca3e4b610a9ae3fa40d88060597f07a89d7a8e7886f06148879
SSDEEP

6144:uNZCxc4b6elx/fCqw8JLyael+WbHKWizwRB2TOSIKFfMfSP2DDQ7u9RRKX/c+Bbs:Nxc4b6elx/fCT8BJWgWiHC0p+SuA8KP4

Score

N/A

Malware Config

Signatures

Files

a1fd6c3b3e5f6a4a30c50f3bcb3d3826b4be125a799c1d4c2f1564633706d44b
.exe windows x86

dde03406a4595399e2e3a4e9a716b10c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
HeapCreate
DeleteTimerQueueEx
CreateTimerQueue
GetProcAddress
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
CreateTimerQueueTimer
WaitForSingleObject
CreateEventA
InterlockedExchange
GlobalAlloc
GlobalFree
SetEvent
ReleaseSemaphore
InterlockedDecrement
InterlockedIncrement
GetCurrentThreadId
InterlockedCompareExchange
Sleep
InterlockedExchangeAdd
DeleteTimerQueueTimer
ChangeTimerQueueTimer
VirtualProtect
GetCommandLineA
CreateSemaphoreA
HeapAlloc
HeapFree
RtlUnwind
GetStartupInfoA
GetVersionExA
VirtualFree
VirtualAlloc
HeapReAlloc
VirtualQuery
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
HeapSize
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetSystemInfo

advapi32

RegOpenKeyExA
RegDeleteKeyA
RegQueryValueExA
RegCreateKeyExA
RegCloseKey

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 304KB - Virtual size: 606KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dde03406a4595399e2e3a4e9a716b10c

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 304KB - Virtual size: 606KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 304KB - Virtual size: 606KB

.rsrc
Size: 1KB - Virtual size: 1KB