99f0b0d0170cf087ac5fa840b425e3a3bd196a65cd2eff3284b37f49e7eb846c

General

Target

99f0b0d0170cf087ac5fa840b425e3a3bd196a65cd2eff3284b37f49e7eb846c
Size

192KB
MD5

f82418f7bad7272b0664cf4766b91ca7
SHA1

9cb7ea848de95e6933ad2e69549b79346c17d732
SHA256

99f0b0d0170cf087ac5fa840b425e3a3bd196a65cd2eff3284b37f49e7eb846c
SHA512

4d9c7d4f75cd6ecb92ef3ef99adcd70c9eafc76348eeb7a35b4c14aa017d82018109fb17ade6ae3107fece9d14ab19e709314e3db799e90e4e5a3fe18750113b
SSDEEP

3072:pAxgDoV8ByKYzOt0Xyyk7YA1ZsCNx2PaISLtuwzsOQSjlicMxQnyWo9fnN:WXWBKemyTSXwzsOpli+yWo

Score

N/A

Malware Config

Signatures

Files

99f0b0d0170cf087ac5fa840b425e3a3bd196a65cd2eff3284b37f49e7eb846c
.exe windows x86

eb52e6728ffa3eb96c8c5f08066444c6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoMarshalHresult
CoInitializeSecurity
CoTaskMemFree
CoCreateInstance
CoSetProxyBlanket
CoInitializeEx
CoUninitialize
CoQueryProxyBlanket
StringFromGUID2

kernel32

LCMapStringW
FreeEnvironmentStringsW
SetProcessAffinityMask
LoadLibraryA
FlushFileBuffers
GetCPInfo
WaitForMultipleObjects
GetModuleFileNameW
SetEndOfFile
TerminateThread
SetEvent
InterlockedDecrement
GetCurrentThreadId
WriteConsoleW
GetEnvironmentStrings
GetSystemTimeAsFileTime
MoveFileW
SetStdHandle
CreateFileA
WriteConsoleA
CreateFileW
GetStringTypeA
GetStringTypeW
GetLocalTime
GetConsoleOutputCP
LCMapStringA
OutputDebugStringW
GlobalLock
EnumResourceTypesA
SetNamedPipeHandleState
GlobalAlloc
WriteFile
IsValidCodePage
InterlockedIncrement
Sleep
FreeEnvironmentStringsA
CreateProcessW
QueryPerformanceCounter
WaitForSingleObject
GetCurrentProcessId
GetACP
GetLocaleInfoA
GetEnvironmentStringsW
DeleteCriticalSection
GetOEMCP
CreateEventW
ReadFile
GlobalUnlock

imm32

ImmAssociateContext

Sections

.text
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb52e6728ffa3eb96c8c5f08066444c6

Headers

File Characteristics

Imports

ole32

kernel32

imm32

Sections

.text Size: 117KB - Virtual size: 117KB

.tls Size: 2KB - Virtual size: 1KB

.data Size: 71KB - Virtual size: 70KB

.reloc Size: 1024B - Virtual size: 248KB

.text
Size: 117KB - Virtual size: 117KB

.tls
Size: 2KB - Virtual size: 1KB

.data
Size: 71KB - Virtual size: 70KB

.reloc
Size: 1024B - Virtual size: 248KB