edd0a95e748969eee0cea4f168b919eb811e269f65f7fb37dcd44db70a6789dc

General

Target

edd0a95e748969eee0cea4f168b919eb811e269f65f7fb37dcd44db70a6789dc
Size

824KB
MD5

ffa881ea42dc6de2afdb40e5e1bc8878
SHA1

37752d4bdb9dce9d47a59e3af9a259b2833e6ba3
SHA256

edd0a95e748969eee0cea4f168b919eb811e269f65f7fb37dcd44db70a6789dc
SHA512

f18c04e06d1b539b2b882fa326c8feff5d7cfceacc74662d028f436257a9fdc92551fb5e1958aed09a794e7a95c53edc5b697cad0fa954496441bc4b3b13dd01
SSDEEP

24576:q6tuLo18vJKpjiMRtER4rjn3mjjS4rWQjMcmk9:xtYE80iyTb4rhM/k9

Score

N/A

Malware Config

Signatures

Files

edd0a95e748969eee0cea4f168b919eb811e269f65f7fb37dcd44db70a6789dc
.exe windows x86

83636f0f98e6e45d0cc176ab37215bf7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNumberFormatW
GetCommState
GetNumaAvailableMemoryNode
CompareFileTime
SetFilePointerEx
OpenEventA
CreateSemaphoreA
FreeConsole
ReadFile
GetCPInfoExA
GetConsoleTitleW
GetProfileSectionA
LZCloseFile
GetConsoleInputWaitHandle
GetTapeParameters
GetStringTypeW
DeleteCriticalSection
DeleteFileA
GetConsoleCP
VirtualFreeEx
GetProcessAffinityMask
GlobalCompact
GetEnvironmentStringsA
TransactNamedPipe
SetSystemTime
GetLocaleInfoA
FormatMessageA
GetConsoleInputExeNameW
LoadLibraryW
GetFullPathNameW
TryEnterCriticalSection
GetCurrentThread
GetModuleFileNameA
GetPrivateProfileIntW
CreateJobObjectW
GetSystemWow64DirectoryW
LoadLibraryExA
ReadConsoleA
AddLocalAlternateComputerNameA
ConnectNamedPipe
EnumSystemCodePagesW
GlobalUnfix
WritePrivateProfileStringW
GetHandleInformation
DnsHostnameToComputerNameA
lstrlenA
DeleteVolumeMountPointA
lstrcmpA
SetSystemPowerState
GetShortPathNameW

ir50_qcx

CompressEnd
CompressQuery
DllMain
AllocInstanceData
SetCPUID
CompressFramesInfo
SetScalability
Compress
CompressBegin
FreeInstanceData

Sections

.text
Size: 403KB - Virtual size: 402KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 165KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 840B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83636f0f98e6e45d0cc176ab37215bf7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ir50_qcx

Sections

.text Size: 403KB - Virtual size: 402KB

.rdata Size: 81KB - Virtual size: 80KB

.data Size: 165KB - Virtual size: 1.6MB

.rsrc Size: 173KB - Virtual size: 172KB

.reloc Size: 1024B - Virtual size: 840B

.text
Size: 403KB - Virtual size: 402KB

.rdata
Size: 81KB - Virtual size: 80KB

.data
Size: 165KB - Virtual size: 1.6MB

.rsrc
Size: 173KB - Virtual size: 172KB

.reloc
Size: 1024B - Virtual size: 840B