bd151a6063cea9370beeddaea63015644eff20a2b09157de183c5941ca96537d

General

Target

bd151a6063cea9370beeddaea63015644eff20a2b09157de183c5941ca96537d
Size

340KB
MD5

13fa8b6c341a018f91fe7601b958d4e1
SHA1

1e67b56c68aa173b487902a9cc1d9a0be558bba2
SHA256

bd151a6063cea9370beeddaea63015644eff20a2b09157de183c5941ca96537d
SHA512

df09c7ad3cec7cf1c807b34a1eff1367261c87f78dc238bd766ba5c9e293695142d93509c7fc41995d832b6ac1e5e2ee87dde9800709ea07a72304e1747bf76a
SSDEEP

6144:0Zh9R968b3ioeqnKJCsHmwmz+aIO///fHj/KQDMcJ3lQZ3zVaGU:sR968ziD2KStz9nnHWR0WY

Score

N/A

Malware Config

Signatures

Files

bd151a6063cea9370beeddaea63015644eff20a2b09157de183c5941ca96537d
.exe windows x86

79e22097c13859e59dd7aff4a6c2de64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetModuleHandleA
GetProcAddress
GetSystemInfo
HeapFree
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
RtlUnwind
GetCommandLineA
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetLastError
CloseHandle
GetCurrentProcessId
TlsAlloc
SetLastError
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
GetFileType
CreateFileA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
InterlockedExchange
VirtualQuery
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetStartupInfoA
InitializeCriticalSection
SetStdHandle
FlushFileBuffers
GetACP
GetOEMCP
GetCPInfo
SetEndOfFile
ReadFile
SetFilePointer
HeapSize
LoadLibraryA
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetLocaleInfoA
LCMapStringA
LCMapStringW
VirtualProtect

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

ole32

CoCreateInstance
CoUninitialize

shlwapi

StrStrIA

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

79e22097c13859e59dd7aff4a6c2de64

Headers

File Characteristics

Imports

kernel32

advapi32

ole32

shlwapi

Sections

.text Size: 95KB - Virtual size: 94KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 10KB

.rsrc Size: 232KB - Virtual size: 232KB

.text
Size: 95KB - Virtual size: 94KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 10KB

.rsrc
Size: 232KB - Virtual size: 232KB