d214db28598c05e6c0c9423c7efe921f2d4cc2e635f7192474267df8fd22e462

General

Target

d214db28598c05e6c0c9423c7efe921f2d4cc2e635f7192474267df8fd22e462
Size

452KB
MD5

b2286e87afce7e52412fb1246a62d936
SHA1

c0d62f70a4655882de4baaca222a62ac8131f702
SHA256

d214db28598c05e6c0c9423c7efe921f2d4cc2e635f7192474267df8fd22e462
SHA512

a2621f5adaa192780949951c426f62d3393eefe14e5d04e65350e96d1251a1f8b27ca5e8718cb8c05610d87045766fc6fcfe395a8e1d0f27f7d858396b7658cd
SSDEEP

12288:ijELBGR+XFIer36oNhGvEkYWMZW6kNdjsMl8n57jJ95tz:4YGaF1rKYMfMW6kN9zl85PPD

Score

N/A

Malware Config

Signatures

Files

d214db28598c05e6c0c9423c7efe921f2d4cc2e635f7192474267df8fd22e462
.exe windows x86

f874cb2537a90e28df53dcf2a2de86cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RemoveDirectoryA
GetLastError
GetFileAttributesA
CloseHandle
CreateFileA
GetSystemTime
Sleep
VirtualAlloc
GetProcAddress
GetConsoleMode
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
IsBadWritePtr
IsBadReadPtr
HeapValidate
DebugBreak
GetStdHandle
WriteFile
InterlockedDecrement
OutputDebugStringA
LoadLibraryA
InterlockedIncrement
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
HeapFree
VirtualFree
RtlUnwind
HeapAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetFilePointer
SetStdHandle
FlushFileBuffers
ReadConsoleInputA
SetConsoleMode

user32

ShowWindow
LoadStringA

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 753KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 396KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f874cb2537a90e28df53dcf2a2de86cd

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 36KB - Virtual size: 35KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 753KB

.rsrc Size: 396KB - Virtual size: 392KB

.text
Size: 36KB - Virtual size: 35KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 753KB

.rsrc
Size: 396KB - Virtual size: 392KB