bb31c1bd1e6ad62e61d00e4ecf315559e0fb9b03847c7d0900a769cf6d1b313b

General

Target

bb31c1bd1e6ad62e61d00e4ecf315559e0fb9b03847c7d0900a769cf6d1b313b
Size

604KB
MD5

08661e69cdd5b1316c778e5c5ad67120
SHA1

7c25eaaa5798d97c93007a910829c83097457f89
SHA256

bb31c1bd1e6ad62e61d00e4ecf315559e0fb9b03847c7d0900a769cf6d1b313b
SHA512

fd193695ebc2df97570d7c6ed729a216c5d49fe3c951c19917e78696edc7ad6067d9e61273fbc9f41118f00cf4ee47a6032508d98829e4eb62cea0fb66bf2522
SSDEEP

12288:FQUD1wjtfliNTqpA9QyJNyHEFBV4N9/uBA8uCSe9H6qkLUNLN:FNSxfli4pDyJjRB28uCSAHPkAd

Score

N/A

Malware Config

Signatures

Files

bb31c1bd1e6ad62e61d00e4ecf315559e0fb9b03847c7d0900a769cf6d1b313b
.exe windows x86

1648a68ce14d2769dd88533fa48f23ae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
GetCurrentProcessId
SetEndOfFile
VirtualQuery
CreateFileW
CreateProcessA
GetOEMCP
SetEnvironmentVariableA
GetDiskFreeSpaceA
WriteFile
SetUnhandledExceptionFilter
GetModuleHandleA
WideCharToMultiByte
SetStdHandle
GetProcAddress
HeapSize
MultiByteToWideChar
UnhandledExceptionFilter
DeleteFileA
LocalAlloc
DeleteCriticalSection
FreeEnvironmentStringsA
LoadLibraryA
GetVersionExA
GetEnvironmentStringsW
HeapAlloc
LCMapStringA
SetEvent
VirtualProtect
GetConsoleOutputCP
GetStdHandle
HeapFree
GetProcessHeap
VirtualAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStrings
SetHandleCount
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
HeapReAlloc
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 556KB - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1648a68ce14d2769dd88533fa48f23ae

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 556KB - Virtual size: 556KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 556KB - Virtual size: 556KB

.rsrc
Size: 4KB - Virtual size: 1KB