c4095702b58822a0b87efff4977bada0c95260f12523e0223bd660c582d2bf50

General

Target

c4095702b58822a0b87efff4977bada0c95260f12523e0223bd660c582d2bf50
Size

127KB
MD5

baf7d216a60af0cc7a0fabcbcc341380
SHA1

70483bb23fc8c9e7d27169a686e168588bc7c6c4
SHA256

c4095702b58822a0b87efff4977bada0c95260f12523e0223bd660c582d2bf50
SHA512

5246e469daa7e9b485c0f56a758815ba425120354e1c79d38636b7f120ad61ae40f720067130a9c185c1e7bb23757005bc1d387a9b34efacc8aaa99eedcbfd2d
SSDEEP

3072:2BhTQUQ2967Jl39XKXk+mOofeqOfGSzim5W5l:2vTH96l7aU+um5C

Score

N/A

Malware Config

Signatures

Files

c4095702b58822a0b87efff4977bada0c95260f12523e0223bd660c582d2bf50
.exe windows x64

6654ac2de499d6872e498903f6de7d21

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

QueryMemoryResourceNotification
GetLocaleInfoA
SetComputerNameExW
FindResourceExA
GetModuleHandleW
NeedCurrentDirectoryForExePathW
VirtualAlloc
GlobalMemoryStatus
ReadFileScatter

user32

SetCapture
IsDialogMessage
IsHungAppWindow
GetKeyboardType
SetUserObjectSecurity
UnloadKeyboardLayout
SetParent
IntersectRect
GetScrollPos
User32InitializeImmEntryTable
MapVirtualKeyA
DdeQueryStringW
IsChild
GetCursorFrameInfo

msvcrt

clock
??_Fbad_cast@@QEAAXXZ
_wsetlocale
?_set_new_handler@@YAP6AH_K@ZP6AH0@Z@Z
_cgetws
_controlfp
__threadhandle
putwc
_wstrdate
puts
ferror
_ismbcl1

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.iX
Size: 67KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.GQfK
Size: 20KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ZjhoM
Size: 25KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 640B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6654ac2de499d6872e498903f6de7d21

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 11KB - Virtual size: 11KB

.iX Size: 67KB - Virtual size: 142KB

.GQfK Size: 20KB - Virtual size: 49KB

.ZjhoM Size: 25KB - Virtual size: 85KB

.rsrc Size: 1024B - Virtual size: 640B

.reloc Size: 512B - Virtual size: 8B

.text
Size: 11KB - Virtual size: 11KB

.iX
Size: 67KB - Virtual size: 142KB

.GQfK
Size: 20KB - Virtual size: 49KB

.ZjhoM
Size: 25KB - Virtual size: 85KB

.rsrc
Size: 1024B - Virtual size: 640B

.reloc
Size: 512B - Virtual size: 8B