5d3d44cad3c2b99b0c08aa0ee2ecdeb3c514090498a4a4c8f2cf7946143ff853

Sharing

Copy URL

Twitter E-mail

General

Target

5d3d44cad3c2b99b0c08aa0ee2ecdeb3c514090498a4a4c8f2cf7946143ff853
Size

263KB
MD5

e8363706522342acd3b8016e5c1d42d1
SHA1

9f99b309b92eb8ba5f0d2e8c8de8a1c332dbf75c
SHA256

5d3d44cad3c2b99b0c08aa0ee2ecdeb3c514090498a4a4c8f2cf7946143ff853
SHA512

06eeecea783f3d631ed5be21900486d1f3bf44ef714c1e87fecbf7c70de309c044cadb946be3db842c8d1c467ae077d0355c5222a4f3dedc8c469f16524fbcb5
SSDEEP

6144:OOBZXkB8gQIHnBbksPS2txZU3+hzf3/+1xXto5Ptwq0beap:OO8BnQIHBb7PtlzfEelwHeap

Score

N/A

Malware Config

Signatures

Files

5d3d44cad3c2b99b0c08aa0ee2ecdeb3c514090498a4a4c8f2cf7946143ff853
.gz
dm_2020-07-24_08-34.exe
.exe windows x86

e1b8b702bc7f49fd4982cfa5521ecbba

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEndOfFile
InterlockedIncrement
WaitNamedPipeA
SetEvent
SetTapeParameters
GetModuleHandleW
GetTickCount
GetProcessHeap
ReadConsoleW
GetVolumePathNameW
GetEnvironmentStrings
GlobalAlloc
TryEnterCriticalSection
GetGeoInfoA
lstrcatA
lstrlenW
ReleaseActCtx
GetProcAddress
CreateConsoleScreenBuffer
VerLanguageNameA
BuildCommDCBAndTimeoutsW
HeapLock
EnumDateFormatsW
lstrcpyA
GetTimeFormatW
CreateMutexW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCommandLineA
GetStartupInfoA
Sleep
ExitProcess
GetLastError
WriteFile
GetStdHandle
GetModuleFileNameA
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapFree
CloseHandle
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
LoadLibraryA
InitializeCriticalSectionAndSpinCount
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RtlUnwind
SetStdHandle
GetConsoleCP
GetConsoleMode
FlushFileBuffers
HeapSize
GetLocaleInfoA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
SetFilePointer
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA

gdi32

GetCharWidthFloatA

Exports

Exports

@GetFirstVice@4
@SetVices@8

Sections

.text
Size: 243KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dih
Size: 1024B - Virtual size: 963B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rufumob
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xazo
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e1b8b702bc7f49fd4982cfa5521ecbba

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

Exports

Exports

Sections

.text Size: 243KB - Virtual size: 243KB

.data Size: 9KB - Virtual size: 8.2MB

.dih Size: 1024B - Virtual size: 963B

.rufumob Size: 512B - Virtual size: 1B

.xazo Size: 1024B - Virtual size: 4KB

.rsrc Size: 59KB - Virtual size: 59KB

.text
Size: 243KB - Virtual size: 243KB

.data
Size: 9KB - Virtual size: 8.2MB

.dih
Size: 1024B - Virtual size: 963B

.rufumob
Size: 512B - Virtual size: 1B

.xazo
Size: 1024B - Virtual size: 4KB

.rsrc
Size: 59KB - Virtual size: 59KB