152fe31208f7ef66f0fc39245c374217d0c4a32b0df5dcb4ae564b6dac3c6c8b

General

Target

152fe31208f7ef66f0fc39245c374217d0c4a32b0df5dcb4ae564b6dac3c6c8b
Size

184KB
MD5

caa8f2c096391f2569cf6f08f516bc96
SHA1

410248ae884ce22f8ebe1b046cf82a6e6e1d0d66
SHA256

152fe31208f7ef66f0fc39245c374217d0c4a32b0df5dcb4ae564b6dac3c6c8b
SHA512

216b931bc4cd730fa1cfc0ef7fb502e3fac05a70958394774eb8667ca83b9622db4ca8ce1718b115bb61643ecb63428894d1cbd8d598ddaf9cccd85363512554
SSDEEP

3072:f7n5mhYWGo7Gn3wDWKT5qnBXFaA/4Y9oB15wVhDfP3cpV7T2l:fsuWtkIon1YSN+zahDfPsjT

Score

N/A

Malware Config

Signatures

Files

152fe31208f7ef66f0fc39245c374217d0c4a32b0df5dcb4ae564b6dac3c6c8b
.exe windows x86

1676b5d013489360244d44660d0473e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoRevokeClassObject
OleUninitialize
OleInitialize

mswsock

GetAddressByNameA
SetServiceA

comsvcs

SafeRef

kernel32

GetStdHandle
GetSystemInfo
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
FlushFileBuffers
LocalFree
LocalAlloc
HeapWalk
HeapCompact
GetLocalTime
CreateFileA
HeapFree
HeapAlloc
HeapCreate
Sleep
GetCurrentThreadId
FreeLibrary
LoadLibraryA
GetProcAddress
GetProfileStringW
VerLanguageNameA
RtlUnwind
RaiseException
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
SetUnhandledExceptionFilter
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
HeapSize
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
GetCPInfo
InterlockedExchange
VirtualQuery
SetConsoleCtrlHandler
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId

Exports

Exports

Gigal
Lavyr
Zeny
aky

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 561KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1676b5d013489360244d44660d0473e6

Headers

File Characteristics

Imports

ole32

mswsock

comsvcs

kernel32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 92KB - Virtual size: 561KB

.idata Size: 4KB - Virtual size: 2KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 92KB - Virtual size: 561KB

.idata
Size: 4KB - Virtual size: 2KB