c1b2c58ec7d7eca0f7d06cb690b0edfe9a064c1361a94624c927fe60fb70391c

General

Target

c1b2c58ec7d7eca0f7d06cb690b0edfe9a064c1361a94624c927fe60fb70391c
Size

192KB
MD5

f164a43777bf01d9a27c37fc34e4f336
SHA1

ddac8784033b8d1bba100a1b56bbc49a2f2d55cb
SHA256

c1b2c58ec7d7eca0f7d06cb690b0edfe9a064c1361a94624c927fe60fb70391c
SHA512

9c4e53a265ac075abd5099b7a028bb6a0c2d7b1462f817d4ea173aa509862d96eebba66562f57d18cb1b90f42db2842a10d6370e7fc1231e11f616a9c93b14f0
SSDEEP

3072:QxXJJnFXq8RQMXNxUm9qEDfr2KrBTqFV62rcyMXEyk3TUjgSFl:q5JAtMXHDLfqcToZoL0TT

Score

N/A

Malware Config

Signatures

Files

c1b2c58ec7d7eca0f7d06cb690b0edfe9a064c1361a94624c927fe60fb70391c
.exe windows x86

8e3ea93da85c8f13d7911bd8ac6d4655

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
LoadLibraryA
GetProcAddress
GetModuleHandleA
VirtualProtect
DeleteTimerQueue
GetCommandLineA
VirtualFree
GlobalFree
ReleaseSemaphore
OpenMutexA
FlushFileBuffers
SetStdHandle
SetFilePointer
GetProcessHeap
Sleep
GetLocaleInfoA
LCMapStringW
LCMapStringA
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
ReadFile
GetStartupInfoA
GetVersionExA
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
HeapFree
MultiByteToWideChar
HeapAlloc
GetSystemInfo
VirtualQuery
GetACP
GetOEMCP
GetCPInfo
HeapReAlloc
RtlUnwind
InterlockedExchange
GetStringTypeA
GetStringTypeW
CloseHandle

user32

ShowWindow
IsWindowEnabled

gdi32

CreateDIBPatternBrushPt

ole32

CoUninitialize

winscard

SCardEndTransaction

psapi

EnumProcessModules

msvfw32

DrawDibDraw

ws2_32

WSAStartup

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 156KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e3ea93da85c8f13d7911bd8ac6d4655

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

winscard

psapi

msvfw32

ws2_32

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 156KB - Virtual size: 153KB

.data Size: 4KB - Virtual size: 8KB

.rsrc Size: 4KB - Virtual size: 72KB

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 156KB - Virtual size: 153KB

.data
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 4KB - Virtual size: 72KB