c94a81fdf688d220827320e88cc0b89af8690142abe5c602131b6659297c7d24[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

c94a81fdf688d220827320e88cc0b89af8690142abe5c602131b6659297c7d24.exe
Size

308KB
MD5

75a6690d9a4a89bd0cf6ceebcffd3c41
SHA1

678ddaaaa14fcd7b90bfa2b673221378e032fdbf
SHA256

c94a81fdf688d220827320e88cc0b89af8690142abe5c602131b6659297c7d24
SHA512

37273a97459d3624e77c8b586acbed6836a88d9c4975625a654f55eccdabeb9d4dcd55598779ec7bfe3e682e725597468ef59fee9e18263a3a00c86bf962e526
SSDEEP

6144:mNNxw8FOMIByyL7bV27npgifHlCDgqxKLY3m0Zt8FZD:mSUlyLV27nPfHlCVIcWS8F

Score

N/A

Malware Config

Signatures

Files

c94a81fdf688d220827320e88cc0b89af8690142abe5c602131b6659297c7d24.exe
.exe windows x86

b678a05c216e0e78b385602dd31274de

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetComputerNameA
WriteConsoleInputW
WritePrivateProfileStructA
GetConsoleAliasesLengthW
CopyFileExW
TlsGetValue
CommConfigDialogA
GetDefaultCommConfigW
FindResourceExW
GetProcessIoCounters
MapUserPhysicalPages
FreeLibrary
CallNamedPipeA
GetCommState
InterlockedDecrement
ZombifyActCtx
ScrollConsoleScreenBufferW
GetSystemWindowsDirectoryW
GetNamedPipeHandleStateA
GlobalLock
SetComputerNameW
CreateDirectoryExA
GetModuleHandleW
CreateNamedPipeW
GetPrivateProfileStringW
WriteFileGather
SetProcessPriorityBoost
GetSystemDirectoryW
LoadLibraryW
GetConsoleMode
SetCommConfig
SizeofResource
GetSystemWow64DirectoryW
GetSystemTimeAdjustment
InterlockedPopEntrySList
GlobalFlags
SetConsoleCursorPosition
GetBinaryTypeA
IsDBCSLeadByte
ReadFile
GetBinaryTypeW
GetOverlappedResult
CompareStringW
ExitThread
lstrlenW
GetStartupInfoW
LCMapStringA
VerifyVersionInfoW
CreateDirectoryA
GetProfileIntA
GetFileSizeEx
SetCurrentDirectoryA
SetThreadLocale
GetCPInfoExW
OpenMutexW
GetCurrentDirectoryW
ReadConsoleOutputCharacterA
GetProcessHeaps
SetVolumeLabelW
WriteProfileSectionA
SetStdHandle
SearchPathA
GetLocalTime
GetAtomNameA
LoadLibraryA
LocalAlloc
SetCalendarInfoW
SetConsoleCtrlHandler
SetConsoleWindowInfo
GetTapeParameters
WTSGetActiveConsoleSessionId
SetConsoleTitleW
GetProcessShutdownParameters
CreateMutexA
FreeEnvironmentStringsW
RequestWakeupLatency
VirtualProtect
GetConsoleCursorInfo
GetCPInfoExA
GetVersionExA
FindAtomW
GetWindowsDirectoryW
GetVersion
GetVolumeNameForVolumeMountPointW
DeleteFileW
FindActCtxSectionStringW
GetProfileSectionW
CommConfigDialogW
InterlockedIncrement
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleFileNameW
GetCommandLineA
GetStartupInfoA
HeapValidate
IsBadReadPtr
RaiseException
RtlUnwind
GetLastError
GetFileType
WriteFile
WideCharToMultiByte
GetConsoleCP
GetProcAddress
TlsAlloc
TlsSetValue
GetCurrentThreadId
TlsFree
SetLastError
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
DebugBreak
GetStdHandle
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
HeapDestroy
HeapCreate
HeapFree
VirtualFree
FlushFileBuffers
HeapAlloc
HeapSize
HeapReAlloc
VirtualAlloc
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
InitializeCriticalSectionAndSpinCount
WriteConsoleA
GetConsoleOutputCP
SetFilePointer
LCMapStringW
GetModuleHandleA
CreateFileA
CloseHandle

user32

GetMessageTime
GetCursorInfo

Exports

Exports

_hockey@4
_hyppo@4

Sections

.text
Size: 215KB - Virtual size: 215KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b678a05c216e0e78b385602dd31274de

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 215KB - Virtual size: 215KB

.rdata Size: 46KB - Virtual size: 46KB

.data Size: 7KB - Virtual size: 31KB

.rsrc Size: 22KB - Virtual size: 21KB

.reloc Size: 16KB - Virtual size: 15KB

.text
Size: 215KB - Virtual size: 215KB

.rdata
Size: 46KB - Virtual size: 46KB

.data
Size: 7KB - Virtual size: 31KB

.rsrc
Size: 22KB - Virtual size: 21KB

.reloc
Size: 16KB - Virtual size: 15KB