T8WYUHj6RIxFShJanaQmTgNT[.]exe

General

Target

T8WYUHj6RIxFShJanaQmTgNT.exe
Size

496KB
MD5

d98be94092b60c3b379198dfa02326df
SHA1

e510afb325d9783f0b0e391b560d4447381d94da
SHA256

606325e9d37cb293eec47b365f7780ca76df929898d4960e5a3886dac277feb2
SHA512

9208d480db748604e451cf8ee6f57621640669aa17ef56418ba460165622c898ca90297fdd0f2b5f77b97372ce6cc7eb9ba57e1718455c89ec956b3cfe90b0e0
SSDEEP

6144:8JK1Cor6HvnQb0KlHOLXZc14gXLOCFxOjSMHaXXkF9cWbaVs9SU2BZZ:8JCCjHvGFQbeZOCPOjTHAkFiWbapUMH

Score

N/A

Malware Config

Signatures

Files

T8WYUHj6RIxFShJanaQmTgNT.exe
.exe windows x86

ce7358d6bce7b73a1d821d335f43705f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
LoadLibraryW
GetProcAddress
GetLocalTime
DebugBreak
RaiseException
GetVersionExA
LoadLibraryA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
IsBadWritePtr
IsBadReadPtr
HeapValidate
HeapFree
HeapAlloc
GetProcessHeap
GetModuleFileNameA
CloseHandle
GetCurrentProcess
FreeLibrary
RtlUnwind
TerminateProcess
ExitProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
WriteFile
InterlockedDecrement
OutputDebugStringA
InterlockedIncrement
HeapReAlloc
VirtualAlloc
SetUnhandledExceptionFilter
VirtualQuery
InterlockedExchange
GetCPInfo
GetACP
GetOEMCP
SetConsoleCtrlHandler
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
IsBadCodePtr
LCMapStringA
LCMapStringW
SetFilePointer
VirtualProtect
GetSystemInfo
GetLocaleInfoA
SetStdHandle
FlushFileBuffers

crypt32

CertNameToStrW

Sections

.textbss
Size: - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ce7358d6bce7b73a1d821d335f43705f

Headers

File Characteristics

Imports

kernel32

crypt32

Sections

.textbss Size: - Virtual size: 71KB

.text Size: 156KB - Virtual size: 154KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 8KB - Virtual size: 63KB

.idata Size: 4KB - Virtual size: 2KB

.textbss
Size: - Virtual size: 71KB

.text
Size: 156KB - Virtual size: 154KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 8KB - Virtual size: 63KB

.idata
Size: 4KB - Virtual size: 2KB