fa229873c4e591c5c9b7e6c01026ff3cea98a4646a4db2c9f6d7c11819b12241

General

Target

fa229873c4e591c5c9b7e6c01026ff3cea98a4646a4db2c9f6d7c11819b12241
Size

1.0MB
MD5

1dd9f439930aaed666cfc9ca367123d9
SHA1

16b0847bc4b4ffdc97d4f9096dfc9f65d79333ab
SHA256

fa229873c4e591c5c9b7e6c01026ff3cea98a4646a4db2c9f6d7c11819b12241
SHA512

0391db4a3ca5f2d8f2970d17c86e8654a9e1460a7bd1958c63d8f5de733d0ae3ef0dcef35f16d37e219cf6a605d39078c843c1be4bc22a66ee3ac946d69fe499
SSDEEP

12288:NixXAEVQQDenmuizD9y4e473GUkfcpLJdBuzQJSZqmsOeLhQ1JDoWwaG8:cKEVQbMJyO3GUkf69dod2KJ0

Score

N/A

Malware Config

Signatures

Files

fa229873c4e591c5c9b7e6c01026ff3cea98a4646a4db2c9f6d7c11819b12241
.exe windows x86

874d873b4fc1d9133acd643db1ead90c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
CloseHandle
WriteFile
CreateFileA
LockResource
GlobalAlloc
LoadResource
SizeofResource
FindResourceA
DeleteFileA
Sleep
WinExec
CreateThread
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
HeapSize
HeapReAlloc
VirtualAlloc
HeapAlloc
GetCPInfo
GetOEMCP
GetACP
VirtualQuery
InterlockedExchange
RtlUnwind
LoadLibraryA
HeapFree
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
TerminateProcess
GetCurrentProcess
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
GetSystemInfo

user32

LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
LoadIconA
RegisterClassExA
DefWindowProcA
BeginPaint
EndPaint
PostQuitMessage
CreateWindowExA
ShowWindow
UpdateWindow
LoadCursorA

shell32

ShellExecuteA

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1016KB - Virtual size: 1013KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

874d873b4fc1d9133acd643db1ead90c

Headers

File Characteristics

Imports

kernel32

user32

shell32

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 1016KB - Virtual size: 1013KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 1016KB - Virtual size: 1013KB