9b6409a35ba0be09dae14124e517b498b386792efee627324e44cc046caa87b6

General

Target

9b6409a35ba0be09dae14124e517b498b386792efee627324e44cc046caa87b6
Size

46KB
MD5

b21713eab60fc392c8b7b51f99d6aee2
SHA1

fee22fab7c3d3771afab2a3ec4e5b79855a65a8e
SHA256

9b6409a35ba0be09dae14124e517b498b386792efee627324e44cc046caa87b6
SHA512

4efb460b4f69725c02f8c1a6f8cf8e6271964859c2d95888596a360764e827efb815bbf8c98d93d5a46ed65d26af2dcd438731dfdb33be438ffe1af2c4c28ed7
SSDEEP

768:MrXkHYwXUabNqJf5n/F4v4m7w0+eoPzFjZZzzVC8uobhJp7plQrUx21Pze0/nPQl:4aXzU/Fbmw0nqzvZzjhDplQ421rZfPE

Score

N/A

Malware Config

Signatures

Files

9b6409a35ba0be09dae14124e517b498b386792efee627324e44cc046caa87b6
.exe windows x86

5bffd230ad0d4c591234787f5c1687a2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_inpw
wscanf
__p__acmdln
_wgetcwd
labs
_ismbbkpunct
_getwche
_vsnprintf
_EH_prolog
??4exception@@QAEAAV0@ABV0@@Z
asin
_sys_errlist
_mbscmp
_wputenv
isdigit
_CIatan
fgetwc
_set_sbh_threshold
_lfind
?raw_name@type_info@@QBEPBDXZ
_tempnam
_mbsnbicoll
_findclose
_ftime64
_wpgmptr
_strset
_CItanh
sprintf
_mbsdup
__lc_codepage
_wasctime
_adj_fdiv_m32i
_osplatform
_beginthread
ungetc
?_query_new_handler@@YAP6AHI@ZXZ
_loaddll
_wcreat
_putw
wcsftime

kernel32

LoadModule
InitializeCriticalSection
ReplaceFileA
IsValidLocale
InterlockedPushEntrySList
OpenFileMappingA
ConsoleMenuControl
SetConsoleHardwareState
OutputDebugStringA
Thread32First
GetProcessHeap
ResetEvent
CreateFileMappingA
GetPrivateProfileSectionA
FormatMessageW
PrivMoveFileIdentityW
SetLastError
IsBadWritePtr
InterlockedIncrement
GetCommMask
LoadLibraryA
GetWriteWatch
IsDebuggerPresent
SetConsoleCursor
RegisterWowExec
lstrlen
VirtualAlloc
Heap32First
GetProcessWorkingSetSize
GlobalDeleteAtom
GetEnvironmentStringsW

user32

PostQuitMessage
DefWindowProcW
RegisterClassW

Sections

.text
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5bffd230ad0d4c591234787f5c1687a2

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

user32

Sections

.text Size: 38KB - Virtual size: 37KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 3KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 38KB - Virtual size: 37KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB