f4c9e8c9b8753ecdff79132e3c9cbc6a7afeefa4136b42a0b7cacc581daf10b0

General

Target

f4c9e8c9b8753ecdff79132e3c9cbc6a7afeefa4136b42a0b7cacc581daf10b0
Size

148KB
MD5

021048802efcc5f6e24b540e10492991
SHA1

ee9fd73768ae44ef0d8c542456cab6a33739aa9f
SHA256

f4c9e8c9b8753ecdff79132e3c9cbc6a7afeefa4136b42a0b7cacc581daf10b0
SHA512

4fcc33926dc0d28a65aac37e9af18561120ef3cbfc53ee48871375564e4bdb8a6209b575be0181bcaf192d4e20acfdaa0723eb813f43ab2e9b83cbe5568e4312
SSDEEP

1536:DA85A/WTFLfcILmaC4RBkZold1bEHmL/aYjgH2rvx838dZsyp/Gu/uM:Dx5AeZfdma/BkG1A4/Nj22TxI8dCyAu

Score

N/A

Malware Config

Signatures

Files

f4c9e8c9b8753ecdff79132e3c9cbc6a7afeefa4136b42a0b7cacc581daf10b0
.exe windows x86

fa90db86d40ef7e6b5800d2a824436df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
UnhandledExceptionFilter
LocalFree
MapViewOfFile
ResumeThread
CloseHandle
GetSystemTimeAsFileTime
LeaveCriticalSection
GetVersionExA
SetUnhandledExceptionFilter
WaitForSingleObject
UnmapViewOfFile
GetCurrentProcess
DisableThreadLibraryCalls
CreateFileMappingA
lstrlenW
CreateFileA
TerminateProcess
VirtualProtect
InitializeCriticalSection
GetFileSize
SetEvent
Sleep
MultiByteToWideChar
LoadResource
SizeofResource
GetTickCount
GetLastError
CreateEventA
InterlockedIncrement
FreeLibrary
VirtualQuery
GetModuleHandleA
LocalReAlloc
lstrcatA
LoadLibraryA
EnterCriticalSection
HeapDestroy
WriteFile
lstrcpyA
DeleteCriticalSection
LocalAlloc
GetSystemDirectoryA
lstrlenA
GetSystemInfo
GetCurrentThreadId
GetSystemDefaultLCID
LockResource
FindResourceW
GetProcAddress
GetCurrentProcessId
CreateThread
VirtualAlloc
OutputDebugStringA
WideCharToMultiByte
QueryPerformanceCounter
FindResourceA
SetCurrentDirectoryW
IsValidLanguageGroup

user32

FindWindowA
CloseWindow

msvcrt

malloc
wcslen
_wcsicmp
wcscpy

msacm32

acmStreamConvert
acmStreamSize
acmStreamClose
acmStreamUnprepareHeader
acmStreamOpen
acmStreamPrepareHeader

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa90db86d40ef7e6b5800d2a824436df

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

msacm32

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 1.0MB

.rsrc Size: 40KB - Virtual size: 36KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 1.0MB

.rsrc
Size: 40KB - Virtual size: 36KB