d788d1b39cf4fd1a8aaf48e21dc8a86d9c51cd99c839e1f47673c1fb57f344b9

General

Target

d788d1b39cf4fd1a8aaf48e21dc8a86d9c51cd99c839e1f47673c1fb57f344b9
Size

118KB
MD5

c78f5eef3b9d5e5871085068dd840b27
SHA1

36f2c972f750d461860c776cf649926f7776b843
SHA256

d788d1b39cf4fd1a8aaf48e21dc8a86d9c51cd99c839e1f47673c1fb57f344b9
SHA512

2a3cbd2b8a10bb2b71c875d83affd561d55b4419a265d482bd590b8f016e0be1acdba0b5f3817dce5206f177aa71eade6d01b5ce85333cde640cc1ebe4b7dcb4
SSDEEP

1536:x3Uq8XEG4INnToZR8dD9KCacBoWc1/Ix6UzR/nk6YzQihTpQvwXyCilfLRTJx0tL:4U4NnkH8dZKWC1u7/ck0mdljRdx2qEe

Score

N/A

Malware Config

Signatures

Files

d788d1b39cf4fd1a8aaf48e21dc8a86d9c51cd99c839e1f47673c1fb57f344b9
.exe windows x86

74025e74147bbe97547111873c113b6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA
AllocConsole
ClearCommBreak
ConnectNamedPipe
CopyFileExA
CreateFiber
CreateMailslotA
CreateWaitableTimerA
DefineDosDeviceA
DeleteFiber
EndUpdateResourceA
EraseTape
ExitProcess
FindAtomA
FindCloseChangeNotification
FlushViewOfFile
GetAtomNameA
GetCommandLineA
GetConsoleCP
GetHandleInformation
GetMailslotInfo
GetModuleHandleA
GetNamedPipeInfo
GetProcAddress
GetProcessHeaps
GetStartupInfoA
GetTempPathA
GetThreadTimes
GlobalUnWire
IsBadHugeReadPtr
MoveFileA
PeekConsoleInputA
PulseEvent
SetEvent
SetFilePointer
SetLastError
SetUnhandledExceptionFilter
Sleep
UnlockFile
VirtualLock
VirtualProtect

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_iob
_onexit
_setmode
abort
atexit
fputc
free
ftell
fwrite
malloc
memset
signal
strncpy
time

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 368B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

74025e74147bbe97547111873c113b6d

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 109KB - Virtual size: 109KB

.rdata Size: 512B - Virtual size: 240B

.bss Size: - Virtual size: 368B

.idata Size: 2KB - Virtual size: 1KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 109KB - Virtual size: 109KB

.rdata
Size: 512B - Virtual size: 240B

.bss
Size: - Virtual size: 368B

.idata
Size: 2KB - Virtual size: 1KB