f62b55cabf15fa05867c107993417fcff2c75f6562675aa745e8b387c82b454e

Sharing

Copy URL

Twitter E-mail

General

Target

f62b55cabf15fa05867c107993417fcff2c75f6562675aa745e8b387c82b454e
Size

782KB
MD5

1459eb752aa14cfe63e4fe91ac4c6156
SHA1

ae17251c35269b05cfc235ab14cf92447fc44956
SHA256

f62b55cabf15fa05867c107993417fcff2c75f6562675aa745e8b387c82b454e
SHA512

f512a3533624644025d2a996ae0af05d1f39867c78e0a1981c42017e66889a739e783db1867366b72f59ca6881b1f8fe28079e765d972d78aac7610399895f82
SSDEEP

12288:uQJxclXU/4nHjsly5vYvBn6DEUh9qsY8FXnLdqCD4NRJgR2zbD:uQJL4nHjJx+B6Fh9qsY8FXn8CDYOK3

Score

N/A

Malware Config

Signatures

Files

f62b55cabf15fa05867c107993417fcff2c75f6562675aa745e8b387c82b454e
.exe windows x86

bde5732c77fd91511c3e4e08ab71b702

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateNamedPipeA
CallNamedPipeW
TerminateThread
GetExitCodeProcess
GetVersionExA
VerifyVersionInfoW
SetConsoleCP
GetConsoleAliasesLengthA
VerLanguageNameA
VerifyVersionInfoA
FreeEnvironmentStringsA
GetProcessPriorityBoost
SetVolumeMountPointA
GetLongPathNameA
CopyFileA
TlsGetValue
SetConsoleCursorInfo
SystemTimeToTzSpecificLocalTime
AddAtomA
ReleaseMutex
GetNamedPipeHandleStateA
CommConfigDialogW
BuildCommDCBAndTimeoutsW
GetProcAddress
LoadLibraryA
GlobalAlloc
Sleep
TlsSetValue
MoveFileW
GetCommandLineA
InterlockedExchange
DeleteFileW
CreateActCtxA
GetPriorityClass
GetPrivateProfileIntW
GetProcessHeap
GlobalMemoryStatusEx
ReadConsoleOutputCharacterA
GetStartupInfoA
GetDiskFreeSpaceExW
GetCPInfoExW
GetWindowsDirectoryW
GetSystemWow64DirectoryA
SetLastError
GetProfileStringW
GetCalendarInfoW
FreeUserPhysicalPages
GetTickCount
GetStringTypeA
DebugBreak
GetPrivateProfileSectionA
lstrcmpA
WriteFile
SetConsoleMode
GetCurrentThreadId
lstrcatW
SetMailslotInfo
LocalFileTimeToFileTime
DefineDosDeviceA
EndUpdateResourceA
WriteConsoleW
SetSystemTimeAdjustment
GetPrivateProfileSectionW
WritePrivateProfileSectionW
GetPrivateProfileStructA
TryEnterCriticalSection
GetPrivateProfileStructW
GetFileAttributesExW
HeapUnlock
PeekConsoleInputW
SetTapeParameters
FindResourceExA
GetLocalTime
FreeEnvironmentStringsW
CreateIoCompletionPort
CreateSemaphoreA
GetThreadLocale
SetFileShortNameA
lstrcpyA
LockFileEx
GetConsoleCP
GetConsoleAliasA
GetConsoleAliasExesLengthA
GetConsoleProcessList
GetDevicePowerState
GetWriteWatch
GetConsoleScreenBufferInfo
ClearCommBreak
TlsAlloc
GetComputerNameW
HeapValidate
GetLastError
WaitForMultipleObjectsEx
SignalObjectAndWait
CancelDeviceWakeupRequest
VirtualLock
SetWaitableTimer
ChangeTimerQueueTimer
GetProcessTimes
FatalAppExitA
lstrcpynA
SetNamedPipeHandleState
FillConsoleOutputCharacterA
GetCompressedFileSizeW
FindNextVolumeMountPointA
GetFullPathNameA
FreeResource
UnlockFile
GlobalAddAtomW
TerminateJobObject
QueryDosDeviceA
EnterCriticalSection
Process32FirstW
SetCurrentDirectoryW
GetBinaryTypeA
OpenMutexA
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
IsBadReadPtr
RtlUnwind
RaiseException
GetModuleHandleW
ExitProcess
DeleteFileA
GetCommandLineW
HeapSetInformation
GetStartupInfoW
WideCharToMultiByte
LCMapStringW
MultiByteToWideChar
GetCPInfo
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
IsProcessorFeaturePresent
HeapAlloc
GetModuleFileNameA
HeapReAlloc
HeapSize
HeapQueryInformation
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
HeapCreate
GetACP
GetOEMCP
IsValidCodePage
TlsFree
GetStdHandle
LoadLibraryW
GetLocaleInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStringTypeW
GetLocaleInfoA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
OutputDebugStringA
OutputDebugStringW
SetFilePointer
GetConsoleMode
SetStdHandle
CreateFileW
CloseHandle
FlushFileBuffers

Sections

.text
Size: 682KB - Virtual size: 682KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 7.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ferug
Size: 512B - Virtual size: 5B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bid
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bde5732c77fd91511c3e4e08ab71b702

Code Sign

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 682KB - Virtual size: 682KB

.data Size: 35KB - Virtual size: 7.8MB

.ferug Size: 512B - Virtual size: 5B

.bid Size: 3KB - Virtual size: 3KB

.rsrc Size: 25KB - Virtual size: 24KB

.reloc Size: 34KB - Virtual size: 34KB

.text
Size: 682KB - Virtual size: 682KB

.data
Size: 35KB - Virtual size: 7.8MB

.ferug
Size: 512B - Virtual size: 5B

.bid
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 25KB - Virtual size: 24KB

.reloc
Size: 34KB - Virtual size: 34KB