a5499a5e8729b7e41e95dd35dcabaa01d43f7c0373959b571000442bd6621d6b

Sharing

Copy URL Twitter E-mail

General

Target

a5499a5e8729b7e41e95dd35dcabaa01d43f7c0373959b571000442bd6621d6b
Size

146KB
MD5

f27966c875fff576c8b8f3ab3387924a
SHA1

69797c161894f487525f10387a506fc3dfd8c251
SHA256

a5499a5e8729b7e41e95dd35dcabaa01d43f7c0373959b571000442bd6621d6b
SHA512

b07a728d7adfc58ba34d516072b5ab82a462f5930440500b762c5fa9b76a980023aaad60df6717e8ab6625cd1ba0808f3d437b38eb45b547f5e1e9e8e49045d3
SSDEEP

3072:RyZ+R65zdX9zU+lcypuy+71xxCOJpPH3dUNupT:RZszN9zFpfSxxCOXSup

Score

N/A

Malware Config

Signatures

Files

a5499a5e8729b7e41e95dd35dcabaa01d43f7c0373959b571000442bd6621d6b
.exe windows x86

78ef702c70d6eedab94cbc84a10c1daf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
GetVersionExA
LocalFree
FindResourceA
GetTickCount
ExitProcess
SetLastError
GetCommandLineA
GetVersion
lstrcatW
GetConsoleMode
GetOEMCP
lstrcpynA
GetACP
GetCurrentThreadId
OpenMutexW
OutputDebugStringA
OpenMutexA
VirtualAlloc
WriteProcessMemory
lstrcmpiA
GetThreadLocale
GetLastError
ResetEvent
GetCurrentProcessId
GetModuleHandleA
GetModuleHandleW
GetStdHandle
IsBadReadPtr
GetUserDefaultLCID
WaitForSingleObject
GetExitCodeThread
FindClose
CompareStringW
WaitForMultipleObjects
lstrcpyA

Sections

.text
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 512B - Virtual size: 287B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 495B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 306B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbss
Size: 512B - Virtual size: 407B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 512B - Virtual size: 130B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 335B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 26B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78ef702c70d6eedab94cbc84a10c1daf

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 133KB - Virtual size: 133KB

.bss Size: 512B - Virtual size: 287B

DATA Size: 512B - Virtual size: 495B

.bss Size: 512B - Virtual size: 306B

DATA Size: 512B - Virtual size: 122KB

.textbss Size: 512B - Virtual size: 407B

BSS Size: 512B - Virtual size: 130B

.bss Size: 512B - Virtual size: 456B

.tls Size: 512B - Virtual size: 37KB

.bss Size: 512B - Virtual size: 335B

.rsrc Size: 6KB - Virtual size: 6KB

.reloc Size: 512B - Virtual size: 26B

.text
Size: 133KB - Virtual size: 133KB

.bss
Size: 512B - Virtual size: 287B

DATA
Size: 512B - Virtual size: 495B

.bss
Size: 512B - Virtual size: 306B

DATA
Size: 512B - Virtual size: 122KB

.textbss
Size: 512B - Virtual size: 407B

BSS
Size: 512B - Virtual size: 130B

.bss
Size: 512B - Virtual size: 456B

.tls
Size: 512B - Virtual size: 37KB

.bss
Size: 512B - Virtual size: 335B

.rsrc
Size: 6KB - Virtual size: 6KB

.reloc
Size: 512B - Virtual size: 26B