bd2f521b1eb2126b6c8df95cab16fafff383e065066f37f00112a01b1c51097f

Sharing

Copy URL

Twitter E-mail

General

Target

bd2f521b1eb2126b6c8df95cab16fafff383e065066f37f00112a01b1c51097f
Size

1.1MB
MD5

a4dbe56c535602f12a867e14671ada2f
SHA1

608c725ac4a62efa24828323579caaf293e3aad0
SHA256

bd2f521b1eb2126b6c8df95cab16fafff383e065066f37f00112a01b1c51097f
SHA512

e261862bd04f2dc9e564927c84c212aa6bbb25b7765a3d0b9887ca3b7ddd5439a0cd48f5deb9e768790c1de14ea6266923dec9e641f8be0868effebcb1f15292
SSDEEP

12288:vBsBJpRCE87Gf7QnD+xvyO7hNOR2K+J1gLxRZO5BJ9GPh87CeY+PbpzSsPW:vBsNRCE8GjvFkC1gwTc5SpzSoW

Score

N/A

Malware Config

Signatures

Files

bd2f521b1eb2126b6c8df95cab16fafff383e065066f37f00112a01b1c51097f
.exe windows x86

a1368d15232e5da46597f5e4bebe94d1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
WriteConsoleW
GetFileType
GetStdHandle
GetModuleHandleW
Sleep
InterlockedIncrement
InterlockedDecrement
GetProcAddress
ExitProcess
EnterCriticalSection
LeaveCriticalSection
MultiByteToWideChar
GetLastError
ReadFile
SetFilePointer
GetTimeZoneInformation
GetSystemTimeAsFileTime
CloseHandle
CreateFileA
GetLocalTime
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapValidate
IsBadReadPtr
SetHandleCount
GetStartupInfoA
DeleteCriticalSection
RtlUnwind
SetConsoleCtrlHandler
LoadLibraryW
TlsGetValue
TlsAlloc
TlsSetValue
GetCurrentThreadId
TlsFree
SetLastError
GetCurrentThread
GetModuleFileNameA
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
FatalAppExitA
FreeLibrary
InterlockedExchange
LoadLibraryA
InitializeCriticalSectionAndSpinCount
SetStdHandle
GetModuleHandleA
FlushFileBuffers
SetEndOfFile
HeapFree
HeapAlloc
GetProcessHeap
WriteConsoleA
GetConsoleOutputCP
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
DebugBreak
OutputDebugStringA
OutputDebugStringW
HeapSize
HeapReAlloc
VirtualAlloc
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoW
GetLocaleInfoA
RaiseException
lstrlenA
GetTimeFormatA
GetDateFormatA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
VirtualQuery
CompareStringA
CompareStringW
SetEnvironmentVariableA

Sections

.text
Size: 849KB - Virtual size: 849KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 529KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1368d15232e5da46597f5e4bebe94d1

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 849KB - Virtual size: 849KB

.rdata Size: 141KB - Virtual size: 141KB

.data Size: 42KB - Virtual size: 529KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 41KB - Virtual size: 41KB

.text
Size: 849KB - Virtual size: 849KB

.rdata
Size: 141KB - Virtual size: 141KB

.data
Size: 42KB - Virtual size: 529KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 41KB - Virtual size: 41KB