dbc0302e93bc96ba1b4f31b89bedd6296c2357031e4f7cab2cf92a7dbbea2c41

Sharing

Copy URL

Twitter E-mail

General

Target

dbc0302e93bc96ba1b4f31b89bedd6296c2357031e4f7cab2cf92a7dbbea2c41
Size

716KB
MD5

63f4b6eaa164b32ecca0e2aafa789cec
SHA1

35e6ac15b1a7f15b3d105f3796dcb54c67170abb
SHA256

dbc0302e93bc96ba1b4f31b89bedd6296c2357031e4f7cab2cf92a7dbbea2c41
SHA512

28947763a80114af308ee51726b1072777260fd9766be0a2c6be8a7d1c78c29b5496e59a790ab897c9d6b13731b17bb5f6faebba546a538a96e319c87aa29fee
SSDEEP

12288:/JJfzFw74U3TIJFl/C4PrO81c5q6qjfGQe3vPbFBLpG+2lAbpMHekgpW7j3S:7a74U3TMFU4/c5qvGQEHr22bKH0O

Score

N/A

Malware Config

Signatures

Files

dbc0302e93bc96ba1b4f31b89bedd6296c2357031e4f7cab2cf92a7dbbea2c41
.exe windows x86

61f5dd277d7d233f85b676d434ad016e

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SearchPathW
GetConsoleAliasesLengthW
TlsGetValue
GetCPInfo
SetDllDirectoryW
InterlockedIncrement
ReadConsoleA
GetProfileSectionA
SetConsoleScreenBufferSize
SetVolumeMountPointW
FreeEnvironmentStringsA
IsBadReadPtr
GetConsoleAliasesLengthA
GetSystemTimeAsFileTime
GetPrivateProfileStringW
GetSystemWow64DirectoryA
CreateActCtxW
ActivateActCtx
GlobalAlloc
GetSystemDirectoryW
ReadConsoleInputA
CopyFileW
GetSystemWindowsDirectoryA
SetConsoleMode
HeapValidate
GetModuleFileNameW
CompareStringW
GetStartupInfoW
WritePrivateProfileStringW
GetNamedPipeHandleStateW
VerifyVersionInfoW
FindFirstFileExA
GetHandleInformation
GetLastError
IsDBCSLeadByteEx
GetCurrentDirectoryW
SetLastError
BackupRead
GetProcAddress
IsBadHugeWritePtr
CreateNamedPipeA
IsValidCodePage
GlobalGetAtomNameA
BuildCommDCBW
OpenWaitableTimerA
LoadLibraryA
OpenWaitableTimerW
SetConsoleCursorInfo
GetFileTime
SetProcessShutdownParameters
GetVersionExA
GetWindowsDirectoryW
DeleteFileW
TlsFree
CommConfigDialogW
LocalFileTimeToFileTime
CreateFileW
MoveFileA
GetCommandLineA
HeapSetInformation
EnterCriticalSection
LeaveCriticalSection
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
DecodePointer
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
InterlockedDecrement
GetModuleHandleW
ExitProcess
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
TlsAlloc
TlsSetValue
HeapCreate
WriteFile
SetFilePointer
GetConsoleCP
GetConsoleMode
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
LoadLibraryW
RtlUnwind
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc
HeapSize
HeapQueryInformation
HeapFree
FlushFileBuffers
SetStdHandle
MultiByteToWideChar
IsProcessorFeaturePresent
LCMapStringW
GetStringTypeW
CloseHandle
RaiseException

user32

GetListBoxInfo
GetMenuInfo

winhttp

WinHttpWriteData

Sections

.text
Size: 620KB - Virtual size: 619KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 39.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zebuvi
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61f5dd277d7d233f85b676d434ad016e

Code Sign

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

winhttp

Sections

.text Size: 620KB - Virtual size: 619KB

.data Size: 4KB - Virtual size: 39.0MB

.zebuvi Size: 512B - Virtual size: 128B

.rsrc Size: 24KB - Virtual size: 23KB

.reloc Size: 66KB - Virtual size: 66KB

.text
Size: 620KB - Virtual size: 619KB

.data
Size: 4KB - Virtual size: 39.0MB

.zebuvi
Size: 512B - Virtual size: 128B

.rsrc
Size: 24KB - Virtual size: 23KB

.reloc
Size: 66KB - Virtual size: 66KB