da2e3134c76786758dace448723db70c3c84055d7f8d87d7a3d36dc0637bee66

General

Target

da2e3134c76786758dace448723db70c3c84055d7f8d87d7a3d36dc0637bee66
Size

453KB
MD5

af615a49e1e79839cdfd69373bc2a722
SHA1

b2962ab2f4e191b7ccbc7aa7924502fd3f741065
SHA256

da2e3134c76786758dace448723db70c3c84055d7f8d87d7a3d36dc0637bee66
SHA512

25c80705c5fa2c87e40b464351fae7ea1724139d7908482272d10c932b33a04487ec605f827bdd349b20ef789fa414aca2381a5d1985d9f2ad71cc48249aba34
SSDEEP

6144:oZ15ZuZtwZXQixWjy+kmUyhxksczwz7YW4UFsDWPRem5c1d+/uWOyM5MX0tJyDH:KFQixWe+klUczmJ4UFJvaLy2Jy

Score

N/A

Malware Config

Signatures

Files

da2e3134c76786758dace448723db70c3c84055d7f8d87d7a3d36dc0637bee66
.exe windows x86

e57755eec970faae9a8e0c6fc9a24b48

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtectEx
PrepareTape
FindNextChangeNotification
GetSystemInfo
FindFirstChangeNotificationA
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
GetCPInfo
ExitProcess
RtlUnwind
HeapFree
RaiseException
HeapAlloc
LCMapStringA
MultiByteToWideChar
GetLastError
LCMapStringW
GetProcAddress
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsAlloc
SetLastError
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
VirtualQuery
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
FlushFileBuffers
SetFilePointer
CloseHandle
HeapSize
IsBadReadPtr
IsBadCodePtr
VirtualProtect
LoadLibraryA
GetACP
GetOEMCP
GetLocaleInfoW
SetStdHandle
ReadFile

Sections

.text
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 152KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e57755eec970faae9a8e0c6fc9a24b48

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 70KB - Virtual size: 70KB

.rdata Size: 139KB - Virtual size: 138KB

.data Size: 152KB - Virtual size: 185KB

.rsrc Size: 90KB - Virtual size: 89KB

.text
Size: 70KB - Virtual size: 70KB

.rdata
Size: 139KB - Virtual size: 138KB

.data
Size: 152KB - Virtual size: 185KB

.rsrc
Size: 90KB - Virtual size: 89KB