ee0ea6e9ca9ed3707b461ead348fab9aa5a7463ba0b85da52f4534be03772b7c

General

Target

ee0ea6e9ca9ed3707b461ead348fab9aa5a7463ba0b85da52f4534be03772b7c
Size

393KB
MD5

5463fad9a20eae709b4dd310c74c6ac2
SHA1

7051e00537b6c6fa9e7e0ff66a1d19f1d6565fb8
SHA256

ee0ea6e9ca9ed3707b461ead348fab9aa5a7463ba0b85da52f4534be03772b7c
SHA512

fb81665e85b1574c145cdb3a2210397a295698d507ffad7c226f0e3e2f18fd50a3cb152b2a45e5f2ddef38447e0e03db73304900a45b304d4238bdea3b326395
SSDEEP

6144:Uqx6umDqbMaQJlfQXEyCyLPYcL/PJxSb1ikgDPB0WiDgZPCdad0wCfNYJg1GJ42X:vxk/aQ5RyVxfDB0oPZLJqegJ0Ftr

Score

N/A

Malware Config

Signatures

Files

ee0ea6e9ca9ed3707b461ead348fab9aa5a7463ba0b85da52f4534be03772b7c
.exe windows x86

bf92a35c3746e4457c9cfe6674ce5eb5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileType
CloseHandle
WriteFile
ReleaseMutex
MapViewOfFile
CreateFileMappingW
CreateFileW
GetFullPathNameW
InterlockedIncrement
InterlockedDecrement
Sleep
InterlockedCompareExchange
InterlockedExchange
GetProcessHeap
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
FindResourceW
GlobalFree
LockResource
LoadResource
GetCommandLineA
DisableThreadLibraryCalls
VirtualProtect
GetStringTypeA
GetStringTypeW
LCMapStringW
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetVersion
ExitProcess
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA

advapi32

RegSetValueExW
RegQueryValueExW

rpcrt4

NdrCStdStubBuffer_Release
NdrDllGetClassObject

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 328KB - Virtual size: 647KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf92a35c3746e4457c9cfe6674ce5eb5

Headers

File Characteristics

Imports

kernel32

advapi32

rpcrt4

Sections

.text Size: 53KB - Virtual size: 53KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 328KB - Virtual size: 647KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 53KB - Virtual size: 53KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 328KB - Virtual size: 647KB

.rsrc
Size: 7KB - Virtual size: 7KB