803712b2a47ca34f47a129ce31d489229d0cf546a27ba2ce74368f51cae68b06

General

Target

803712b2a47ca34f47a129ce31d489229d0cf546a27ba2ce74368f51cae68b06
Size

39KB
MD5

4c43bb7da3b9fa7e1379997f4e6c4ca6
SHA1

a03a94d81fd99054cb620b3dcd6d6ec0492619db
SHA256

803712b2a47ca34f47a129ce31d489229d0cf546a27ba2ce74368f51cae68b06
SHA512

06defa6bbe27f9424a7e6177cd380abe1b0c6da944ce8efd7e10087a69dfc97c4bd53b4e7e1d496f02618cc52ff06455204a8a5c110eea79bbf99cad9d17b5c3
SSDEEP

768:leyIIsBOD/pZkrdGugskzCTZlNbrMr5tjMPD0HBZqR23/b0GPn61KoitLL6L+Z:smsbrMrKD0zqR2321KrL2

Score

N/A

Malware Config

Signatures

Files

803712b2a47ca34f47a129ce31d489229d0cf546a27ba2ce74368f51cae68b06
.exe windows x86

e74a1173a819031a7e1dc6b77df20530

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfoExW
GetFileAttributesA
EnumResourceLanguagesW
FindFirstFileExW
GetCommModemStatus
SetConsoleActiveScreenBuffer
CreateRemoteThread
GetProcessHeaps
ReadConsoleOutputCharacterW
IsValidCodePage
GetWindowsDirectoryA
FoldStringW
FreeEnvironmentStringsA
GetThreadContext
HeapAlloc
VirtualFree
GetProcessHeap
HeapDestroy
HeapCreate
VirtualAlloc
GetBinaryTypeW
ReadConsoleOutputAttribute
GetCPInfo
PeekConsoleInputA
GetVolumeInformationW
OutputDebugStringW
Module32First
GetTempFileNameW
RtlUnwind
GetDateFormatW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent

gdi32

GetViewportExtEx
GetPolyFillMode
GetGlyphOutlineW
ModifyWorldTransform
CreateFontIndirectW
ExtTextOutW
CloseFigure
EqualRgn
GetDeviceGammaRamp

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 416B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e74a1173a819031a7e1dc6b77df20530

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 29KB - Virtual size: 37KB

.rsrc Size: 512B - Virtual size: 416B

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 29KB - Virtual size: 37KB

.rsrc
Size: 512B - Virtual size: 416B