b397645cd81b7c89aeee9ca2a4870a60ca245fbd0a5f226280f66a8a3323c561

General

Target

b397645cd81b7c89aeee9ca2a4870a60ca245fbd0a5f226280f66a8a3323c561
Size

72KB
MD5

74f1fd62fa0476f7067e130172e0b143
SHA1

ebbe72c042364460f78e582acdd4ed833beb7177
SHA256

b397645cd81b7c89aeee9ca2a4870a60ca245fbd0a5f226280f66a8a3323c561
SHA512

f3d82a504cd798fe87450a046038b15c37779474218a88457d18e6ce2d7ec566553b9c4cb885ede70d3e47d5fce05755c840f1c66e30642aa14ef5098ba58e91
SSDEEP

768:WxnxLtm2zqVypjPzmRcmHm1kiRpcrmrsUEt4WtKDLOK8su4b1SoWge9Tn3:WxZqVyp+3G1klrrt4WQDLOyuO1RW77

Score

N/A

Malware Config

Signatures

Files

b397645cd81b7c89aeee9ca2a4870a60ca245fbd0a5f226280f66a8a3323c561
.exe windows x86

29800d3fec4c1202611557ac04f4f8d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetProcAddress
LoadLibraryA
GlobalAlloc
SetErrorMode
ExitProcess
GetModuleFileNameA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleA
WriteFile
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
Sleep
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
MultiByteToWideChar
GetLocaleInfoA

user32

CreateWindowExA
RegisterClassExA
LoadIconA
GetMessageW
LoadStringA
DefWindowProcA
EndPaint
BeginPaint
PostMessageA
UpdateWindow
ShowWindow

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

29800d3fec4c1202611557ac04f4f8d9

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 28KB - Virtual size: 25KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 4KB - Virtual size: 824B

.text
Size: 28KB - Virtual size: 25KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 4KB - Virtual size: 824B