cb1d9aa7fa1e317802e0c7d95def9e4cb795af637b9f1ae31c7725f49d712be0

General

Target

cb1d9aa7fa1e317802e0c7d95def9e4cb795af637b9f1ae31c7725f49d712be0
Size

191KB
MD5

50c38b1f2dcaeee6e8fcf87d2dc845b2
SHA1

96e2727b56c63e1c78e9d3e85fe8d848a62b6560
SHA256

cb1d9aa7fa1e317802e0c7d95def9e4cb795af637b9f1ae31c7725f49d712be0
SHA512

c5986030855846ca13c0bc55f77d45a15ee6bb29ac2858db355b8fb3848c64cc2b0c522de01179befc5c608bcaa8641b4bc12ee4f58e8555c3ec53f97614a5ce
SSDEEP

3072:VqsRCxdBiwkccLGzRdsR0Ee46vdO8qn/JVkMW9mPfBAitgeRBD/DJqCLz:osRAcbryRw0EhYWHBAct/93

Score

N/A

Malware Config

Signatures

Files

cb1d9aa7fa1e317802e0c7d95def9e4cb795af637b9f1ae31c7725f49d712be0
.exe windows x86

b4c8addb69819b0ac62c4d3cc8be7671

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalReAlloc
EnumSystemCodePagesA
CreateNamedPipeW
CompareStringW
IsBadCodePtr
WaitForDebugEvent
GetShortPathNameW
GetStringTypeW
GetVolumeNameForVolumeMountPointW
OpenSemaphoreA
GetModuleHandleW
ExitProcess
Process32First
DisconnectNamedPipe
ReadConsoleOutputW
MoveFileWithProgressW
UnlockFile
GetDateFormatA
QueryInformationJobObject
CreateDirectoryA
FindFirstVolumeW
GetModuleHandleA
RaiseException
FlushFileBuffers
LoadLibraryA
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
SetStdHandle
ReadFile
GetProcAddress
HeapAlloc
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
CloseHandle
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetLastError
MultiByteToWideChar
GetStartupInfoA
GetCommandLineA
GetVersion
WideCharToMultiByte
GetStringTypeA
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
SetFilePointer
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
GetModuleFileNameA

user32

CharPrevW
GetOpenClipboardWindow
CreateIconFromResourceEx
CallWindowProcW
IsZoomed
WaitMessage
MonitorFromWindow
CheckRadioButton
CopyRect
GetKeyboardLayoutNameW
SetWindowLongA
ToAsciiEx
GetMessageA
GetTopWindow
EnumWindowStationsW
UpdateWindow
LoadBitmapA
GetAncestor
CreateIconIndirect
UnregisterClassA
RegisterWindowMessageA
CallMsgFilterW
MessageBeep

Sections

.text
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b4c8addb69819b0ac62c4d3cc8be7671

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 164KB - Virtual size: 163KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 18KB - Virtual size: 59KB

.text
Size: 164KB - Virtual size: 163KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 18KB - Virtual size: 59KB