c357faf78d6fb1460bfcd2741d1e99a9f19cf6dffd6c09bda84a2f0928015398[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

c357faf78d6fb1460bfcd2741d1e99a9f19cf6dffd6c09bda84a2f0928015398.exe
Size

49KB
MD5

66c46b76bb1a1e7ecdb091619a8f5089
SHA1

d858d9e11fc027ce7102ef150b412d1eaf34c544
SHA256

c357faf78d6fb1460bfcd2741d1e99a9f19cf6dffd6c09bda84a2f0928015398
SHA512

5a6ae1336d4bd9341a97fb13ce645827b0d3dfe4ecd32ffccd31e43e0cabb3f855eb6d402055031e7ca427304f41b7a44bfbd79ffbb36af47e84b38bec8a2b3d
SSDEEP

768:uPLVKP/y8AiqiVDcyISgfhhxi2U4CeEDUAnpUZ0qfuR3NpwoOM76Ybe:ujV6/HhqSDP+0NHzp1EuRQ876B

Score

1^/10

Malware Config

Signatures

Files

c357faf78d6fb1460bfcd2741d1e99a9f19cf6dffd6c09bda84a2f0928015398.exe
.exe windows x86

dab6180d5f5d53c54c91914103919d40

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
GetModuleFileNameW
GetCurrentProcessId
Sleep
CloseHandle
MultiByteToWideChar
LCMapStringW
IsProcessorFeaturePresent
HeapReAlloc
HeapSize
WideCharToMultiByte
RtlUnwind
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
LocalAlloc
LocalSize
LocalReAlloc
LocalFree
GetTickCount
GetLocalTime
OpenMutexW
GetLastError
CreateMutexW
CreateThread
WaitForSingleObject
ReleaseMutex
QueryPerformanceCounter
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
VirtualAlloc
VirtualFree
VirtualProtect
IsBadReadPtr
HeapAlloc
GetProcessHeap
FreeLibrary
HeapFree
GetCommandLineW
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
GetModuleHandleW
ExitProcess
DecodePointer
WriteFile
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapCreate
GetSystemTimeAsFileTime
LoadLibraryW
UnhandledExceptionFilter
GetStringTypeW

user32

DefWindowProcW
PostQuitMessage
UpdateWindow
ShowWindow
SetWindowLongW
GetWindowLongW
CreateWindowExW
RegisterClassExW
LoadCursorW
LoadIconW
DispatchMessageW
TranslateMessage
GetMessageW

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dab6180d5f5d53c54c91914103919d40

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 28KB - Virtual size: 28KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 6KB - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 792B

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 28KB - Virtual size: 28KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 6KB - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 792B

.reloc
Size: 3KB - Virtual size: 3KB