ffd476c40c2ddf0846c3590a4e3987914974ff5c3e92155dc390f661cca71f47

General

Target

ffd476c40c2ddf0846c3590a4e3987914974ff5c3e92155dc390f661cca71f47
Size

88KB
MD5

7331a3741b9c6751b2eaf1ddecc6f476
SHA1

b6c1fb53c5c9c9fc8ee96b2227604f0483cac649
SHA256

ffd476c40c2ddf0846c3590a4e3987914974ff5c3e92155dc390f661cca71f47
SHA512

64fb124f702f7b14b09bc65b67e93444dab273ccff8bba45bf416a2468e4e455bba116914850f3c181cdfd5faef51f465b7978f0744705b898de15d5eea0c8a2
SSDEEP

1536:5EoeGRArxBWimzTnNHYoGqX4MzTexFXaHFRkaeF3gptw:5EDUgxcHY2X4a+wXJs3gptw

Score

N/A

Malware Config

Signatures

Files

ffd476c40c2ddf0846c3590a4e3987914974ff5c3e92155dc390f661cca71f47
.exe windows x86

13c87e3c1a0b82bd6f371fcf68e6dc9a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
ExitProcess
GetProcAddress
GetProcessHeap
IsBadReadPtr
HeapAlloc
lstrcmpiA
AttachConsole
UpdateResourceA
CreateFiberEx
LoadLibraryA
FreeEnvironmentStringsW
HeapFree
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapReAlloc
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
WriteFile
GetCPInfo
GetACP
GetOEMCP
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

user32

CreateIcon

gdi32

LineTo
GetCurrentPositionEx
CreateFontW

advapi32

LsaFreeMemory
StartServiceW

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

13c87e3c1a0b82bd6f371fcf68e6dc9a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 32KB - Virtual size: 29KB

.rdata Size: 40KB - Virtual size: 37KB

.data Size: 12KB - Virtual size: 13KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 40KB - Virtual size: 37KB

.data
Size: 12KB - Virtual size: 13KB