04875c48adccb44ffcb18af8ac581112[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

04875c48adccb44ffcb18af8ac581112.exe
Size

377KB
MD5

04875c48adccb44ffcb18af8ac581112
SHA1

e83a38e661ef63de1ba879a1e22186a16d65c358
SHA256

3cd108b7f88e3c35febc8858c5bfe4d3737d4b5596a0616d0ac259a5333c8b44
SHA512

932393210b26e7b46c082b7bf441f7a2ad7e622b4cc596336a7733b80f408327a4da713edf9139bda8e98435575041e4e028e28c759a1d8e02bd5f7bac29f4fb
SSDEEP

6144:+CX/Y5p063VUi40Sx1Xil6rqp8m5fs/s3V9659C0pJeigaU:+CX/Y5p063ii8zok5m5fmonO

Score

N/A

Malware Config

Signatures

Files

04875c48adccb44ffcb18af8ac581112.exe
.exe windows x86

4955ef8fbec7f4cbf35bca15d28208cd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
OpenJobObjectA
ZombifyActCtx
GetConsoleAliasesA
GetConsoleTitleA
LoadLibraryW
GetCalendarInfoW
CreateEventA
WriteConsoleW
GetModuleFileNameW
GetOverlappedResult
FreeLibraryAndExitThread
SetLastError
GetProcAddress
lstrcpynA
CreateConsoleScreenBuffer
WriteProfileSectionA
LoadLibraryA
WriteConsoleA
LocalAlloc
MoveFileA
GetModuleFileNameA
EnumDateFormatsW
GetShortPathNameW
GetLongPathNameA
GetLastError
HeapFree
GetCommandLineA
HeapSetInformation
GetStartupInfoW
HeapCreate
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
TerminateProcess
GetCurrentProcess
RtlUnwind
IsProcessorFeaturePresent
CloseHandle
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
Sleep
RaiseException
SetStdHandle
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapReAlloc
SetFilePointer
MultiByteToWideChar
HeapSize
LCMapStringW
GetStringTypeW
CreateFileW

winhttp

WinHttpSetDefaultProxyConfiguration

Sections

.text
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4955ef8fbec7f4cbf35bca15d28208cd

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

winhttp

Sections

.text Size: 280KB - Virtual size: 280KB

.data Size: 33KB - Virtual size: 66KB

.rsrc Size: 57KB - Virtual size: 57KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 280KB - Virtual size: 280KB

.data
Size: 33KB - Virtual size: 66KB

.rsrc
Size: 57KB - Virtual size: 57KB

.reloc
Size: 5KB - Virtual size: 4KB