ac892cd1e82e43f0f37087d6f34906a236f94ebed82366a671371d0e40592485

General

Target

ac892cd1e82e43f0f37087d6f34906a236f94ebed82366a671371d0e40592485
Size

48KB
MD5

36b21e1fa411b04ac6ab2295c861dc6e
SHA1

f4a1c0a471512cc48ab0f2d80f19868d8fc531c4
SHA256

ac892cd1e82e43f0f37087d6f34906a236f94ebed82366a671371d0e40592485
SHA512

c52f444b2b3c7f2f2d15dadb40d4d515d6d50387681c7313f1afcb29b1c37689aa61e00a18c45c265d33793733b2c3ea9c786484ecb6507ef4aa56f22a4dbf33
SSDEEP

768:MTEHGIKYyWQyIvJxnS5BfNL0zDNo+w3iww8QLIo2tnc8U:lHRo3Rxwfoop3/w8fJtc8U

Score

N/A

Malware Config

Signatures

Files

ac892cd1e82e43f0f37087d6f34906a236f94ebed82366a671371d0e40592485
.exe windows x86

af32ccd65bd0d5245b96bf6c7fe2ce63

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

Shell_GetImageLists
DuplicateIcon

kernel32

VirtualAlloc
LoadResource
CloseHandle
InterlockedIncrement
ExitProcess
SetLastError
LeaveCriticalSection
LockResource
GetTickCount
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
InterlockedDecrement
MultiByteToWideChar
TerminateProcess
GetProcAddress
LocalFree
EnterCriticalSection
GetModuleHandleA
EndUpdateResourceA
InitializeCriticalSection
GetCurrentThreadId
GetLastError
FindResourceA
SizeofResource
UnhandledExceptionFilter
LoadLibraryA
WriteFile
DeleteCriticalSection
GetCurrentProcessId
QueryPerformanceCounter
Sleep
FreeLibrary
WideCharToMultiByte
GetCurrentProcess

Sections

.textbss
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.debug
Size: 512B - Virtual size: 679B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af32ccd65bd0d5245b96bf6c7fe2ce63

Headers

DLL Characteristics

File Characteristics

Imports

shell32

kernel32

Sections

.textbss Size: - Virtual size: 52KB

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 40KB - Virtual size: 40KB

.rsrc Size: 2KB - Virtual size: 2KB

.debug Size: 512B - Virtual size: 679B

.textbss
Size: - Virtual size: 52KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 40KB - Virtual size: 40KB

.rsrc
Size: 2KB - Virtual size: 2KB

.debug
Size: 512B - Virtual size: 679B