86fc141655ef3842be861de3ad4f566d[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

86fc141655ef3842be861de3ad4f566d.exe
Size

330KB
MD5

86fc141655ef3842be861de3ad4f566d
SHA1

626fe12a4a925355053d1a0cd70e9eedaea6fc0e
SHA256

b86b2701c8e065a75b55d8a8fcf6cc980e21d5587e7f2a9def7bfdbdcc386651
SHA512

a5453ae840855523e728c33df3abe9e7230aa6d9a63305fea3de6433dbba188e98de4dc978948023b890009c0b1c515496bfd8818d27827bfdfad09bf494edf0
SSDEEP

6144:7pTJlFxm+7+ShoR4rJsqPKSGJxYu/sN9Dn/7y1:tTJlFxm+7+8NT4fkTDn/7w

Score

N/A

Malware Config

Signatures

Files

86fc141655ef3842be861de3ad4f566d.exe
.exe windows x86

02c769aa1c4d2ec165e224494a424a20

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileExW
OpenJobObjectA
GetCurrentProcess
EnumCalendarInfoExW
GetConsoleAliasesLengthA
GetGeoInfoW
GetUserDefaultLangID
GetEnvironmentStrings
GlobalAlloc
LoadLibraryW
SetConsoleMode
GetModuleFileNameW
GetSystemDirectoryA
GetBinaryTypeW
lstrcmpW
InterlockedIncrement
GetLastError
GetProcAddress
GetDiskFreeSpaceW
GetAtomNameA
LoadLibraryA
LocalAlloc
CreateEventW
GetCommTimeouts
GetCurrentProcessId
FindResourceA
FreeLibrary
LCMapStringA
SetDefaultCommConfigA
MultiByteToWideChar
EncodePointer
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
GetModuleHandleW
ExitProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCPInfo
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
IsProcessorFeaturePresent
EnterCriticalSection
LeaveCriticalSection
Sleep
HeapSize
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
SetFilePointer
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
LCMapStringW
GetStringTypeW
HeapFree
RtlUnwind
HeapAlloc
HeapReAlloc
WriteConsoleW
SetStdHandle
FlushFileBuffers
RaiseException
CreateFileW
CloseHandle

gdi32

GetCharWidthFloatA

advapi32

ImpersonateAnonymousToken

Sections

.text
Size: 236KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 646KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lurehi
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wuheh
Size: 1024B - Virtual size: 624B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ludawuv
Size: 512B - Virtual size: 23B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02c769aa1c4d2ec165e224494a424a20

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

advapi32

Sections

.text Size: 236KB - Virtual size: 236KB

.data Size: 66KB - Virtual size: 646KB

.lurehi Size: 3KB - Virtual size: 2KB

.wuheh Size: 1024B - Virtual size: 624B

.ludawuv Size: 512B - Virtual size: 23B

.rsrc Size: 15KB - Virtual size: 14KB

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 236KB - Virtual size: 236KB

.data
Size: 66KB - Virtual size: 646KB

.lurehi
Size: 3KB - Virtual size: 2KB

.wuheh
Size: 1024B - Virtual size: 624B

.ludawuv
Size: 512B - Virtual size: 23B

.rsrc
Size: 15KB - Virtual size: 14KB

.reloc
Size: 6KB - Virtual size: 6KB