7beee5d2ff6f2b0576ebe83c76832be35b1baa18f063c3e9ce509b247a8eb349

Sharing

Copy URL Twitter E-mail

General

Target

7beee5d2ff6f2b0576ebe83c76832be35b1baa18f063c3e9ce509b247a8eb349
Size

120KB
MD5

0b06eb3b7abae470a80f769d66f7ab90
SHA1

ac810cdbf9a9b0deed69520757a4fdb13ac411fe
SHA256

7beee5d2ff6f2b0576ebe83c76832be35b1baa18f063c3e9ce509b247a8eb349
SHA512

f56b28a2ee3766f516dc2cd366629f9318a2e905df19ca9a31a3ce9f20611d5b590fdb42d7188d89b71f031f35863d63bf8f765396cd20cdb645f5f2cb386482
SSDEEP

1536:mR4WxixyPDmAe5qY3oh6O5q5eL6N42V12zfIO27v27PI4lDDE+SqhcZm7j8ojMUx:mR+Ae5qY3Eg5eG227E7PI4VSqa4MDU

Score

N/A

Malware Config

Signatures

Files

7beee5d2ff6f2b0576ebe83c76832be35b1baa18f063c3e9ce509b247a8eb349
.exe windows x86

fd97ca8703024617a4e9a88f6e7ba939

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
SetEvent
HeapAlloc
GetProcessHeap
LoadLibraryA
FormatMessageA
IsProcessorFeaturePresent
GlobalAlloc
PulseEvent
CreateFileA
GetFileType
GetLastError
GetModuleHandleA
GetSystemRegistryQuota
GetSystemInfo
GetNativeSystemInfo
ExitProcess
GetCommandLineA
GetStartupInfoA
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
GetProcAddress
WriteFile
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW

user32

CreateWindowExA
AdjustWindowRect
LoadIconA
AnyPopup
GetWindowContextHelpId

gdi32

BitBlt
StretchBlt
CloseEnhMetaFile
SetWinMetaFileBits
SetPolyFillMode
EndPath
PlayMetaFileRecord

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd97ca8703024617a4e9a88f6e7ba939

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 25KB - Virtual size: 25KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 3KB - Virtual size: 13KB

.rsrc Size: 78KB - Virtual size: 78KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 25KB - Virtual size: 25KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 3KB - Virtual size: 13KB

.rsrc
Size: 78KB - Virtual size: 78KB

.reloc
Size: 3KB - Virtual size: 3KB