4b5ee83f89c3bf2740a6ae49613e52042d18c5bc474fb77eb22b998c9aa64702

General

Target

4b5ee83f89c3bf2740a6ae49613e52042d18c5bc474fb77eb22b998c9aa64702
Size

135KB
MD5

29f8c1d34eaa284cf2e7fce3991e5140
SHA1

c2e512a04d77379161eddeabffa44c6d0e00db8f
SHA256

4b5ee83f89c3bf2740a6ae49613e52042d18c5bc474fb77eb22b998c9aa64702
SHA512

a576f79612fd77132851ede0cae1f52935f10ffa3c713611bc6a3be2367707aff1296361af0e472e2267916f7988f093ec240c2436fab3058bf880a1a4bbf58f
SSDEEP

1536:8OmbBWRChGP8cwMc9ZEACh8yYez3Sz5BXYDFmDL7snImvTb1JKscIcaX/UHXQF22:8Bw9PZwDdCh8peziz55mpIHHXS22

Score

N/A

Malware Config

Signatures

Files

4b5ee83f89c3bf2740a6ae49613e52042d18c5bc474fb77eb22b998c9aa64702
.exe windows x86

ffb0dd10b603cd34eb48acaf70dbe38d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
lstrcmpiA
GetTickCount
TerminateProcess
OpenProcess
MultiByteToWideChar
lstrlenA
FreeLibrary
GetSystemDirectoryA
SetFileTime
SystemTimeToFileTime
CreateFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
WinExec
GetModuleFileNameA
GetEnvironmentVariableA
UnmapViewOfFile
GetModuleHandleA
MapViewOfFile
CreateFileMappingA
GetFileSize
LoadLibraryExA
GlobalAlloc
SetFileAttributesA
CopyFileA
DeleteFileA
MoveFileA
FindNextFileA
FindFirstFileA
GlobalFree
GetTempPathA
MoveFileExA
Sleep
GetVersionExA
GetWindowsDirectoryA
WaitForSingleObject
CreateThread
GetCurrentThreadId
GetLastError
DeviceIoControl

msvcrt

strlen
_strnicmp
sprintf
memset
??3@YAXPAX@Z
??2@YAPAXI@Z
memcmp
wcslen
memcpy
strcat
strcpy
_wcsnicmp
swprintf
wcscpy
fclose
fseek
fwrite
fopen
strcmp

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ffb0dd10b603cd34eb48acaf70dbe38d

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 116KB - Virtual size: 114KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 116KB - Virtual size: 114KB

.rsrc
Size: 4KB - Virtual size: 1KB