f0147bda1f97844bd223f3f6adaa275e880c003cdb2ef3d873d554eaddf75fdf

General

Target

f0147bda1f97844bd223f3f6adaa275e880c003cdb2ef3d873d554eaddf75fdf
Size

624KB
MD5

08424726930e959b4724a95cb0456030
SHA1

fefda8d12796412215b3ba659fec0c516f43139a
SHA256

f0147bda1f97844bd223f3f6adaa275e880c003cdb2ef3d873d554eaddf75fdf
SHA512

8d661eb53c628326698bdaeb8b2afdfd852d68ec887e370899040302e27bf69bfefa6605bb8d53df039d134fd91a46c8d50fef4e2f081b107fab5b2d489ed88f
SSDEEP

6144:Pq/+gME8ZddntyyDAmZuowReAn9bRVVduWMhiYQc1AinBJ4wKznd50cUDiPjNR43:HPuxkAn9FVV8iYF1HknzvZRvIX

Score

N/A

Malware Config

Signatures

Files

f0147bda1f97844bd223f3f6adaa275e880c003cdb2ef3d873d554eaddf75fdf
.exe windows x86

15827049e5fbb84419fe317e3d40ad9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
CreateEventA
GlobalAlloc
UnmapViewOfFile
InitializeCriticalSection
GetFullPathNameA
FindFirstFileW
ReadFile
GetModuleHandleA
GetCPInfo
RaiseException
CompareStringW
GetProcAddress
DeleteFileW
HeapSize
MultiByteToWideChar
UnhandledExceptionFilter
LockResource
GetCurrentProcessId
FlushFileBuffers
GlobalUnlock
GetOEMCP
GetFileAttributesA
EnterCriticalSection
HeapAlloc
GetProcessHeap
VirtualAlloc
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
InterlockedDecrement
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
InterlockedIncrement
LeaveCriticalSection
GetACP
HeapReAlloc
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
Sleep
FormatMessageA
CreateFileA
GetStdHandle
GetVersion

user32

TranslateMessage
GetMessageA
SetTimer
CreateWindowExA
RegisterClassExA
LoadCursorA
LoadIconA
UpdateWindow
DefWindowProcA
KillTimer
PostQuitMessage
DispatchMessageA

gdi32

CreateCompatibleDC
BitBlt
CreateSolidBrush
DeleteObject

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 564KB - Virtual size: 564KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

15827049e5fbb84419fe317e3d40ad9e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 564KB - Virtual size: 564KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 564KB - Virtual size: 564KB