e776fe7340671ed955e5ffdb69939756[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

e776fe7340671ed955e5ffdb69939756.exe
Size

352KB
MD5

e776fe7340671ed955e5ffdb69939756
SHA1

1760d714f1bbdda2d82f3af90c483148fb5e65b7
SHA256

8f43d2c1630f4d4fe28389f350bbb4770129ee14b473e32ec7e809ba5c684771
SHA512

d8e908e3fb35b0fe31a0821329c96efc5e87dcbc6421b32ddf1ae2d7ef27339a14314f16020ccd1c3bd8f9f1af65e9b29a05eeef946661651465011aff9fe3e2
SSDEEP

6144:Q2Tf8fbSmrJJ6LNs1JIzqvQVm4D1wNkzc0dzJ:D8fbSmr76pSSevQVtD14k7t

Score

N/A

Malware Config

Signatures

Files

e776fe7340671ed955e5ffdb69939756.exe
.exe windows x86

44e37c3e57142a1bf9ece9dbaaa4cd9a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeSListHead
GetModuleHandleW
GetConsoleAliasesA
InitializeCriticalSection
LoadLibraryW
LeaveCriticalSection
lstrcpynW
GetModuleFileNameW
ReleaseActCtx
SetLastError
GetLongPathNameA
SetMailslotInfo
WriteProfileSectionA
SetFileAttributesA
WriteConsoleA
GetProcessWorkingSetSize
LocalAlloc
IsWow64Process
GetFileType
GetModuleFileNameA
EnumDateFormatsA
CreateIoCompletionPort
GetConsoleTitleW
VirtualProtect
GetShortPathNameW
FreeLibrary
MoveFileW
InterlockedIncrement
InterlockedDecrement
Sleep
DeleteCriticalSection
EnterCriticalSection
EncodePointer
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
GetLastError
HeapFree
RtlUnwind
HeapAlloc
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
HeapSize
GetProcAddress
ExitProcess
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetCurrentThreadId
RaiseException
WriteFile
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
MultiByteToWideChar
GetConsoleCP
GetConsoleMode
HeapReAlloc
SetStdHandle
LCMapStringW
WriteConsoleW
FlushFileBuffers
CreateFileW
CloseHandle

advapi32

ClearEventLogA

Sections

.text
Size: 290KB - Virtual size: 289KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44e37c3e57142a1bf9ece9dbaaa4cd9a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 290KB - Virtual size: 289KB

.data Size: 26KB - Virtual size: 59KB

.rsrc Size: 28KB - Virtual size: 27KB

.reloc Size: 7KB - Virtual size: 6KB

.text
Size: 290KB - Virtual size: 289KB

.data
Size: 26KB - Virtual size: 59KB

.rsrc
Size: 28KB - Virtual size: 27KB

.reloc
Size: 7KB - Virtual size: 6KB