d2db5b99f06a3957a48ccfd957bb27b9270ce36fbab598e1bb364dca38852920

General

Target

d2db5b99f06a3957a48ccfd957bb27b9270ce36fbab598e1bb364dca38852920
Size

128KB
MD5

6248d9fb50e6bb8f7250d6fefad17910
SHA1

b94ee7574e78486eeae59ffc8fe4f5324e2f6c4e
SHA256

d2db5b99f06a3957a48ccfd957bb27b9270ce36fbab598e1bb364dca38852920
SHA512

118d8f9b76132eca9147a1221c735b391d3eb906ef8d1366b8761e9fc310c937c067ff4e04cce635c3fbb5c91fb4f7417d34471c4afe39a0c72a80ea16cb2f5e
SSDEEP

3072:wzOxncrgPiDLlU89Giw9WwLMK0hG3qaeeZpFJ+/qtg6mZ:dCpU8GihGPemW/ig

Score

N/A

Malware Config

Signatures

Files

d2db5b99f06a3957a48ccfd957bb27b9270ce36fbab598e1bb364dca38852920
.exe windows x86

a1d1cbacae79b293e8378cf9ae2706a8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PrepareTape
LoadModule
FindFirstFileW
GetCompressedFileSizeW
ExpandEnvironmentStringsW
GetFileInformationByHandle
GetShortPathNameA
ConnectNamedPipe
GetNumberFormatW
QueueUserWorkItem
CreateDirectoryExA
QueueUserAPC
GetSystemDefaultUILanguage
GetTempFileNameA
GetQueuedCompletionStatus
GlobalUnWire
LocalShrink
FindFirstFileA
GetDiskFreeSpaceExA
SetCurrentDirectoryA
GetComputerNameExW
CreateEventW
GetDevicePowerState
GetLongPathNameW
CreateWaitableTimerW
GetSystemPowerStatus
RequestDeviceWakeup
lstrcatW
CompareStringA
SetProcessAffinityMask
CloseHandle

version

VerFindFileW
VerFindFileA
VerInstallFileA

user32

InvalidateRect
LookupIconIdFromDirectory
DdeQueryStringA
GetKeyboardLayoutNameW
SendIMEMessageExA
CharToOemW

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 375B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 381B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a1d1cbacae79b293e8378cf9ae2706a8

Headers

File Characteristics

Imports

kernel32

version

user32

Sections

.text Size: 83KB - Virtual size: 83KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 375B

.data Size: 40KB - Virtual size: 39KB

.edata Size: 512B - Virtual size: 381B

.rsrc Size: 1KB - Virtual size: 84KB

.text
Size: 83KB - Virtual size: 83KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 375B

.data
Size: 40KB - Virtual size: 39KB

.edata
Size: 512B - Virtual size: 381B

.rsrc
Size: 1KB - Virtual size: 84KB