General

Malware Config

Signatures

Files

• 8e8b6818423930eea073315743b788aef2f41198961946046b7b89042cb3f95a.exe

  .exe windows:5 windows x86 arch:x86

  f86dec4a80961955a89e7ed62046cc0e

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  PDB Paths

  C:\crysis\Release\PDB\payload.pdb

  Imports

  kernel32

  GetProcAddress

  LoadLibraryA

  WaitForSingleObject

  InitializeCriticalSectionAndSpinCount

  LeaveCriticalSection

  GetLastError

  EnterCriticalSection

  ReleaseMutex

  CloseHandle

  Sections

  .text

  Size: 39KB - Virtual size: 39KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 10KB - Virtual size: 9KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 42KB - Virtual size: 42KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE