585613e2c0e0c7dfef145f708a2c4a7a349f1ef9f62ac964aea16c9006b8e20c

General

Target

585613e2c0e0c7dfef145f708a2c4a7a349f1ef9f62ac964aea16c9006b8e20c
Size

209KB
MD5

8fa4f2d30de74c46d18ebe1c3eeef350
SHA1

0e43ba62c47a0f4b7c554b3c578a9836d6c4d70d
SHA256

585613e2c0e0c7dfef145f708a2c4a7a349f1ef9f62ac964aea16c9006b8e20c
SHA512

11e5cf9d59a055fb248377b006a8d3e50a34760f107ee950d286fa8de67a73f77d03cf18eca898aadf741d278fc70f4e872a5f44b659e375e05fba46d4d18dba
SSDEEP

6144:bkC2ZtHQZQL9fXAwssEMkQkoxNMEVXOzayWul:wC2ZNs49fXhdRkoxNMEVXOzayp

Score

N/A

Malware Config

Signatures

Files

585613e2c0e0c7dfef145f708a2c4a7a349f1ef9f62ac964aea16c9006b8e20c
.exe windows x86

f9ef67503efb0420bc7d0ab3038e322e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetModuleHandleA
GetSystemInfo
VirtualProtect
GetLocaleInfoA
GetStartupInfoA
GetCommandLineA
GetVersionExA
GetCurrentProcessId
GetLastError
GetFileAttributesA
CloseHandle
GetFileType
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
HeapDestroy
HeapCreate
VirtualFree
HeapFree
GetACP
GetOEMCP
GetCPInfo
SetStdHandle
HeapAlloc
SetFilePointer
VirtualAlloc
HeapReAlloc
RtlUnwind
InterlockedExchange
VirtualQuery
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
HeapSize
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetSystemTimeAsFileTime
FlushFileBuffers

gdi32

CreatePolygonRgn
GetTextMetricsA

shlwapi

PathRemoveBackslashW
PathIsFileSpecW

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 387KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9ef67503efb0420bc7d0ab3038e322e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

shlwapi

Sections

.text Size: 31KB - Virtual size: 30KB

.rdata Size: 141KB - Virtual size: 140KB

.data Size: 34KB - Virtual size: 387KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 31KB - Virtual size: 30KB

.rdata
Size: 141KB - Virtual size: 140KB

.data
Size: 34KB - Virtual size: 387KB

.rsrc
Size: 2KB - Virtual size: 2KB