a13591776b323d01d9e247c1caccfcc3feced8f914cde3de936df95e34e0f9c9

General

Target

a13591776b323d01d9e247c1caccfcc3feced8f914cde3de936df95e34e0f9c9
Size

220KB
MD5

a3a5a701e0d2ca05099a0ddd04e5c292
SHA1

97d2e3559505a21fedd6147b9298bcd55ce04adc
SHA256

a13591776b323d01d9e247c1caccfcc3feced8f914cde3de936df95e34e0f9c9
SHA512

4d84c5cea1a82e7d74c2ef75ef06894392e27f4a5dca41fe9acf3ddd35b63a1f123482b73e7b5c1221894f7659e6b63b3838dd40f6620261d9061d38169eb2bc
SSDEEP

3072:NWOvq7vY/lpXE2W3FyMLCcYmvvX/zAmGOwHxLmQ+z2fTi3LRgiQOnmxckjXEzb:N/rOFfCAX/8ROQxLmQ+cdgnCcaXk

Score

N/A

Malware Config

Signatures

Files

a13591776b323d01d9e247c1caccfcc3feced8f914cde3de936df95e34e0f9c9
.exe windows x86

d9ca63b8d9bfd390d5571b9123ed3231

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
LockResource
OpenSemaphoreA
SizeofResource
LocalSize
VirtualProtect
VirtualQuery
VirtualFree
LoadLibraryA
GetLastError
VirtualAlloc
GlobalLock
GetProcAddress
GetModuleHandleA
PulseEvent
CreateFileA
LocalAlloc
ResetEvent
WaitForSingleObject
ExitProcess
Sleep
GetFileType
CreateEventA
VirtualProtectEx
FindFirstFileA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
GetStartupInfoA
GetCommandLineA
GetVersionExA
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
HeapDestroy
HeapCreate
HeapFree
GetACP
GetOEMCP
GetCPInfo
HeapAlloc
HeapReAlloc
RtlUnwind
InterlockedExchange
HeapSize
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringA
MultiByteToWideChar
GetSystemInfo

user32

MoveWindow
GetDesktopWindow
LoadStringA

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d9ca63b8d9bfd390d5571b9123ed3231

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 180KB - Virtual size: 179KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 180KB - Virtual size: 179KB