ef31e81a3b65e36827b4d633835c7d6e1679584029d68d6dcd9968f4a45df759

General

Target

ef31e81a3b65e36827b4d633835c7d6e1679584029d68d6dcd9968f4a45df759
Size

60KB
MD5

2aaae8779e1cb1e9a0f1d306c1a535b3
SHA1

ec0e06d81f5ee75ca5201925a17700ec15b5aba5
SHA256

ef31e81a3b65e36827b4d633835c7d6e1679584029d68d6dcd9968f4a45df759
SHA512

ac2bc30bb73fa808558b6217361fd9e6fb423cf081f6ca64be2971e8e7078070485e715777a127bc4a693a345d4b7bd7d083a859a837cbebfa51b9b5155dd89d
SSDEEP

768:XadCgGnSdZbbhJKG9Gn5tk3vb1LJhKqfkw/gGuQy92B/LOV7bzQ0EuQt7I:XacgWUh0G9h3vbhVxHy92B03z3Qt7I

Score

N/A

Malware Config

Signatures

Files

ef31e81a3b65e36827b4d633835c7d6e1679584029d68d6dcd9968f4a45df759
.exe windows x86

fa0a0db54ecf97827ac5ccb60c4939a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenW

shlwapi

StrChrA
StrToIntA
UrlEscapeA

kernel32

MultiByteToWideChar
LCMapStringW
WideCharToMultiByte
LCMapStringA
GetFileSize
ReadFile
lstrcpyA
lstrcatA
lstrcmpiA
WriteFile
GetSystemDirectoryW
lstrcatW
CreateFileW
CloseHandle
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoW
RaiseException
RtlUnwind
GetProcAddress
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
ExitProcess
GetStdHandle
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
Sleep
VirtualAlloc
HeapReAlloc
HeapSize
LoadLibraryA
InitializeCriticalSection
GetLocaleInfoA
GetStringTypeA
GetStringTypeW

Sections

.text
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fa0a0db54ecf97827ac5ccb60c4939a2

Headers

File Characteristics

Imports

wininet

shlwapi

kernel32

Sections

.text Size: 40KB - Virtual size: 38KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 6KB

.text
Size: 40KB - Virtual size: 38KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 6KB