d0b8d48a50508960731d43a8dad6e16c[.]exe

Resubmissions

27-07-2022 06:42

220727-hgv5bsbcak 1

09-11-2020 19:39

201109-tx1qg2kzc6 1

Sharing

Copy URL

Twitter E-mail

General

Target

d0b8d48a50508960731d43a8dad6e16c.exe
Size

195KB
MD5

d0b8d48a50508960731d43a8dad6e16c
SHA1

f943325bec905e6fde01ab6b92e2adee20e426bb
SHA256

7de27a5c2694106f2b842b482488fa491eb9b91a908d9fc660bd0db09c17a065
SHA512

6fbe7c1db9217580ff465c293c126ae15eefe09cf03c6d2d7a2d11450dbdf373526687d6cbcb0a9c370f3f552c581a199f1e1e8c8e72d39aa669ab4ada3eb030
SSDEEP

3072:mWprpgi7fJrMKtCMelNHUi5YAr5kcTMIVcX8MRGzdCqRms2mGOiKaLw:Tpai7R6HU2zy8MYJhR32mvZ

Score

N/A

Malware Config

Signatures

Files

d0b8d48a50508960731d43a8dad6e16c.exe
.exe windows x86

83d4cb9d1144bd424741abb55d63d443

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetEnvironmentVariableW
GetVersion
MultiByteToWideChar
GetEnvironmentVariableA
CompareStringW
CompareStringA
lstrlenW
WideCharToMultiByte
GetStringTypeExW
GetStringTypeExA
lstrcmpiW
lstrcmpiA
lstrlenA
GetProcAddress
LoadLibraryExW
GetLastError
InitializeCriticalSection
DeleteCriticalSection
RaiseException
GetLocaleInfoW
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
SetConsoleCtrlHandler
LCMapStringW
LCMapStringA
GetStringTypeW
RtlUnwind
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapAlloc
HeapFree
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
TlsAlloc
SetLastError
GetCurrentThreadId
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
ExitProcess
TerminateProcess
GetCurrentProcess
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
HeapReAlloc
IsBadWritePtr
HeapSize
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
IsBadReadPtr
IsBadCodePtr
GetOEMCP
GetCPInfo
LoadLibraryA
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
SetEnvironmentVariableA

user32

CharLowerW
CharUpperA
CharUpperW
CharLowerA
UnregisterClassA

ole32

CoFileTimeNow

oleaut32

SysFreeString

Sections

.text
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

83d4cb9d1144bd424741abb55d63d443

Headers

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

Sections

.text Size: 64KB - Virtual size: 61KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 496B

.text
Size: 64KB - Virtual size: 61KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 496B