44bb8e023b4c0e0b5830a58d120ac427cbdcb4897dc74e91c155ea169b07d99d

Sharing

Copy URL

Twitter E-mail

General

Target

44bb8e023b4c0e0b5830a58d120ac427cbdcb4897dc74e91c155ea169b07d99d
Size

396KB
MD5

794f78c8b950dc1a840d165892cb0596
SHA1

4667584f756b8e67a504ada9141f868e59f8dbb1
SHA256

44bb8e023b4c0e0b5830a58d120ac427cbdcb4897dc74e91c155ea169b07d99d
SHA512

1151775fe618496334f1bf184e4f65bfb83125918ffa80274e7e560c49a10a838cf253e7b7404df37e8219a827d47117900b7a26c5f97041227d931138d708d0
SSDEEP

6144:s0sTdSkul5CpfZsu43jx0HdEouuj5axxn7JCpIKxZU/bc92A6mJOl:BG7pfZsu43d0HdEFuj5EpNbWAcsoOl

Score

N/A

Malware Config

Signatures

Files

44bb8e023b4c0e0b5830a58d120ac427cbdcb4897dc74e91c155ea169b07d99d
.exe windows x86

01ece61e4ccf11d7b346e3e7d3e9f105

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetClassNameA
GetShellWindow
wsprintfW

urlmon

CoInternetCombineUrl

pdh

PdhGetCounterInfoW

ntdsapi

DsFreeSpnArrayA

comdlg32

PageSetupDlgW
ChooseColorA

setupapi

SetupBackupErrorA

kernel32

GetTapeStatus
DeleteTimerQueue
GetFirmwareEnvironmentVariableA
CreateThread
lstrlenA
GetModuleFileNameA
SetFirmwareEnvironmentVariableA
GetCommandLineA
GetModuleHandleA
HeapWalk

imm32

ImmDestroyContext

ole32

HMENU_UserUnmarshal

msvcrt

memcpy
wcstoul
isalnum

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

HunyjzY
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

:EA?PHuF
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

%u_^
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

;4H;
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01ece61e4ccf11d7b346e3e7d3e9f105

Headers

File Characteristics

Imports

user32

urlmon

pdh

ntdsapi

comdlg32

setupapi

kernel32

imm32

ole32

msvcrt

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 268KB

DATA Size: 196KB - Virtual size: 195KB

HunyjzY Size: 16KB - Virtual size: 12KB

:EA?PHuF Size: 16KB - Virtual size: 15KB

%u_^ Size: 36KB - Virtual size: 32KB

;4H; Size: 28KB - Virtual size: 27KB

.crt Size: 12KB - Virtual size: 9KB

.rsrc Size: 68KB - Virtual size: 64KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 268KB

DATA
Size: 196KB - Virtual size: 195KB

HunyjzY
Size: 16KB - Virtual size: 12KB

:EA?PHuF
Size: 16KB - Virtual size: 15KB

%u_^
Size: 36KB - Virtual size: 32KB

;4H;
Size: 28KB - Virtual size: 27KB

.crt
Size: 12KB - Virtual size: 9KB

.rsrc
Size: 68KB - Virtual size: 64KB