da474509791b1fdb79bb59337a82f0f19d7957a8b24a8af11eedca9fed2d544c

General

Target

da474509791b1fdb79bb59337a82f0f19d7957a8b24a8af11eedca9fed2d544c
Size

342KB
MD5

e86ee59cc9ab496437fbb73e0ccf56a9
SHA1

ec03ff9307e747d561cb7da448ce3fccf2fa16f3
SHA256

da474509791b1fdb79bb59337a82f0f19d7957a8b24a8af11eedca9fed2d544c
SHA512

d64c74f5f850ec7669bae9d92863491ba870d70e81a8ed92f1a8577c424d7d560f3795c4f090c2a0f59124b4af54daa6ee377db75f3d5fb6b63795329274fbea
SSDEEP

6144:Eaz2T1Au8OOOKoFiSz0+2li1rvZFAv9P8eK7dWKISUTnt3SSkXWcPK2G:pKT1AyOAiq0+2lWrxF6XKhWKISUjt3oG

Score

N/A

Malware Config

Signatures

Files

da474509791b1fdb79bb59337a82f0f19d7957a8b24a8af11eedca9fed2d544c
.exe windows x86

79e22097c13859e59dd7aff4a6c2de64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetModuleHandleA
GetProcAddress
GetSystemInfo
HeapFree
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
RtlUnwind
GetCommandLineA
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetLastError
CloseHandle
GetCurrentProcessId
TlsAlloc
SetLastError
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
GetFileType
CreateFileA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
InterlockedExchange
VirtualQuery
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetStartupInfoA
InitializeCriticalSection
SetStdHandle
FlushFileBuffers
GetACP
GetOEMCP
GetCPInfo
SetEndOfFile
ReadFile
SetFilePointer
HeapSize
LoadLibraryA
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetLocaleInfoA
LCMapStringA
LCMapStringW
VirtualProtect

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

ole32

CoCreateInstance
CoUninitialize

shlwapi

StrStrIA

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

79e22097c13859e59dd7aff4a6c2de64

Headers

File Characteristics

Imports

kernel32

advapi32

ole32

shlwapi

Sections

.text Size: 94KB - Virtual size: 93KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 10KB

.rsrc Size: 236KB - Virtual size: 235KB

.text
Size: 94KB - Virtual size: 93KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 10KB

.rsrc
Size: 236KB - Virtual size: 235KB