61b3f7a4ed459908987ab7cf3fa760085df48eb20de01cb44ba145872613a9be

General

Target

61b3f7a4ed459908987ab7cf3fa760085df48eb20de01cb44ba145872613a9be
Size

184KB
MD5

e35d8e23a434fcf03205ecddf12c3b43
SHA1

fa7bab0d34ffeffb8fee0ae25356bd9f70b1a12e
SHA256

61b3f7a4ed459908987ab7cf3fa760085df48eb20de01cb44ba145872613a9be
SHA512

2b7f64406115d436977de1b673a6ea4126199a0fdb61677bb7fa7d3c97fcbd5aaf31dd9f7404d36c8be4f3f456dd1d35d870590fbd4f5a5c0eceb39e3cc3bcf6
SSDEEP

3072:tVk2lsmhMT8Qw1Zb1Fg+pRb9NXrzoNZSclKfD:tmf8Qw1TF/1/oRu

Score

N/A

Malware Config

Signatures

Files

61b3f7a4ed459908987ab7cf3fa760085df48eb20de01cb44ba145872613a9be
.exe windows x86

171621669a4fbb17cb5e7b8872cb5161

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
VirtualFree
LoadLibraryA
ReleaseMutex
VirtualAlloc
VirtualProtect
GetProcAddress
GetModuleHandleA
TlsGetValue
HeapAlloc
GetLastError
GetCurrentProcessId
SetEvent
GetCurrentThreadId
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
HeapSize
VirtualQuery
InterlockedExchange
RtlUnwind
Sleep
GetCurrentThread
GetCPInfo
GetOEMCP
GetACP
HeapReAlloc
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapFree
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
GetSystemInfo

user32

PostQuitMessage
DefWindowProcA
BeginPaint
LoadAcceleratorsA
EndPaint
GetDesktopWindow
GetDC
IsIconic
GetCursorPos
SetCursorPos
GetWindowRect
UpdateWindow

gdi32

SelectObject

psapi

GetModuleBaseNameA

msvfw32

DrawDibStop
DrawDibEnd

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 144KB - Virtual size: 225KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

171621669a4fbb17cb5e7b8872cb5161

Headers

File Characteristics

Imports

kernel32

user32

gdi32

psapi

msvfw32

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 144KB - Virtual size: 225KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 144KB - Virtual size: 225KB