b0fa1fb4a00a1236cec14d4c083ee6662b5f0ce229e84e890332998e16a4a8f2

General

Target

b0fa1fb4a00a1236cec14d4c083ee6662b5f0ce229e84e890332998e16a4a8f2
Size

174KB
MD5

be448f73e34fe79eed6ff8c9120d03a2
SHA1

a3f7499e6dc06e1fc7700b0e9e74bb22c1a1d624
SHA256

b0fa1fb4a00a1236cec14d4c083ee6662b5f0ce229e84e890332998e16a4a8f2
SHA512

d380b6548efaa12b19e2ca58fcfdbee3a7910dcb6d24ef69e092ffa74e24668e41b7587db86a99d3d8b931224c308db368ef2b58a2774fd6c103b14db79d594d
SSDEEP

3072:zXX/tJBcVgxmolfPjqE5pI0gxF8o7ytFhyLjficUN4inwcbkCvoK/vQT:RG6Rj3pIRl7ypyLjfiVNFwcbLX

Score

N/A

Malware Config

Signatures

Files

b0fa1fb4a00a1236cec14d4c083ee6662b5f0ce229e84e890332998e16a4a8f2
.exe windows x86

0db8855c7e8d4d06dc37596818ed51dc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
SetFilePointer
LoadLibraryA
LCMapStringW
LCMapStringA
FlushFileBuffers
GetModuleHandleA
FileTimeToDosDateTime
WaitNamedPipeW
WriteConsoleOutputAttribute
lstrcpyA
SetVolumeMountPointA
SetStdHandle
SetLocaleInfoW
GetLastError
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
HeapAlloc
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
CloseHandle

user32

MapVirtualKeyExW
DestroyCursor
CharPrevA
LockWindowUpdate
IsDialogMessageA

gdi32

GdiGetPageCount
GetEnhMetaFileA
SetMetaRgn
GetNearestColor
GetViewportOrgEx
DeleteColorSpace
GetGraphicsMode

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 560B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0db8855c7e8d4d06dc37596818ed51dc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 28KB - Virtual size: 28KB

.rdata Size: 114KB - Virtual size: 113KB

.data Size: 30KB - Virtual size: 247KB

.rsrc Size: 1024B - Virtual size: 560B

.text
Size: 28KB - Virtual size: 28KB

.rdata
Size: 114KB - Virtual size: 113KB

.data
Size: 30KB - Virtual size: 247KB

.rsrc
Size: 1024B - Virtual size: 560B