b6e0b484eac873deb71c69aa100d7443a3f99775194c2feeaeadc00f062a4115

General

Target

b6e0b484eac873deb71c69aa100d7443a3f99775194c2feeaeadc00f062a4115
Size

143KB
MD5

c3c42adbbe6bb1fb12bd85cc5d2d5906
SHA1

5b071001bd20bd0896316eaa5364577ef755e08f
SHA256

b6e0b484eac873deb71c69aa100d7443a3f99775194c2feeaeadc00f062a4115
SHA512

f3d4250cefb191db0695474033436da99cc676bd5cc54058b14e022c6f67bd49c978bd4d34879328e340b6bcdfda787d90804dd629a8703f2e85e1cb76271713
SSDEEP

3072:MH+rWyE90HvVXXfk1pH6/gK4N2MzIfQhzALTByOQIonaLU4RhzVw:M+SyEmvVXKpH6/t4jhhE3nin8Ueg

Score

N/A

Malware Config

Signatures

Files

b6e0b484eac873deb71c69aa100d7443a3f99775194c2feeaeadc00f062a4115
.exe windows x86

beca8fbe972dd08ab4139a652507c7d7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
GetShortPathNameA
GetLongPathNameA
_llseek
GetStartupInfoA
GetModuleHandleA
GetLocaleInfoW
GetCurrentProcessId
GetAtomNameW
WriteConsoleOutputW
HeapDestroy

msvcrt

scanf
__setusermatherr
_mbsnicmp
_initterm
_mbsbtype
_wmkdir
_acmdln
__set_app_type
__p__fmode
__p__commode
_except_handler3
exit
clearerr
_XcptFilter
_controlfp
tmpnam
__getmainargs
_exit
isalpha
_adjust_fdiv

gdi32

IntersectClipRect
GetEnhMetaFileBits
SetAbortProc
CreateFontIndirectW
UnrealizeObject
GetPixelFormat
GetFontAssocStatus
SetBkColor
GetCharABCWidthsI
ChoosePixelFormat
GetPolyFillMode
CloseEnhMetaFile
GdiPlayScript

user32

GetClipboardData
BlockInput
DlgDirListW
EqualRect
UpdateLayeredWindow
IsDlgButtonChecked
TabbedTextOutW
CloseDesktop

Sections

.text
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

beca8fbe972dd08ab4139a652507c7d7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

gdi32

user32

Sections

.text Size: 80KB - Virtual size: 80KB

.rdata Size: 51KB - Virtual size: 50KB

.data Size: 512B - Virtual size: 88KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 80KB - Virtual size: 80KB

.rdata
Size: 51KB - Virtual size: 50KB

.data
Size: 512B - Virtual size: 88KB

.rsrc
Size: 9KB - Virtual size: 8KB