tmp | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tmp
Size

6.8MB
MD5

807596cad72a330771c24c1c83033a1c
SHA1

4223866a2119827535cdede2031996cfd15698db
SHA256

8706a3e366bd4f0cf20f9287118dd40a312e1e3b306dd393e83f475b3d8151de
SHA512

a8cd24808d22270e92060d6fb5b4e40dc2da3a642e636421b1cd8d09a30cdcb8efbce6f13bde2a4b9fbe954787b8a2877478443361f0042cc885c62ab7ce37fe
SSDEEP

98304:yEMAcsSKvtqPOVTMV0f/N++QirxEB2EwF5x7foIcG+elsaxOU4EGrY6JhsGT:JSQqPoVXN++QaHbjoNG+Os6knhH

Score

N/A

Malware Config

Signatures

Files

tmp
.exe windows x86

d6df5548ea43327c1e9edaa78ea42ece

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
TlsAlloc
Sleep
SetLastError
SetUnhandledExceptionFilter
RaiseException
HeapAlloc
GetLastError
DeleteCriticalSection
DecodePointer
EncodePointer
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
IsDebuggerPresent
GetProcessHeap
GetCurrentThreadId
ExitProcess
AreFileApisANSI
GetStdHandle
GetFileType
ReadFile
SetFilePointerEx
WriteFile
GetConsoleCP
GetACP
GetModuleFileNameW
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
LoadLibraryExW
SetStdHandle
OutputDebugStringW
FindClose
GlobalUnlock
GetStartupInfoW
MultiByteToWideChar
GetSystemDirectoryA
GetSystemDefaultLangID
CreateThread
GetStringTypeW
GetModuleHandleA
LocalAlloc
IsValidCodePage
HeapSize
GetEnvironmentVariableA
CreateFileW
InitializeCriticalSectionAndSpinCount
GetCommandLineA
ClearCommBreak
GetWindowsDirectoryA
GetCommandLineW
TlsFree
LocalFree
GetModuleFileNameA
RtlUnwind
EnterCriticalSection
CompareStringW
GetTimeFormatW
LeaveCriticalSection
GetConsoleMode
ReadConsoleW
GetLocaleInfoA
CreateFileA
LCMapStringW
CloseHandle
TerminateProcess
WideCharToMultiByte
TlsSetValue
GetProcessTimes
TlsGetValue
HeapReAlloc
GetSystemTime
FindNextFileA
GetOEMCP
CreatePipe
UnhandledExceptionFilter
CreateNamedPipeA
FlushFileBuffers
GetTimeZoneInformation
WriteConsoleW
CreateProcessA
GlobalAlloc
SetCommTimeouts
GetModuleHandleW
SetCommBreak
GlobalLock
GetModuleHandleExW
HeapFree
QueryPerformanceCounter
InitializeSListHead
GetCurrentProcess
GetCommState
SetEndOfFile
GetCPInfo
IsProcessorFeaturePresent
MapViewOfFile

user32

WinHelpA
ShowCursor
GetDlgItem
DefWindowProcA
FlashWindow
DispatchMessageA
GetDlgItemTextA
EndPaint
ClientToScreen
ScreenToClient
TrackPopupMenu
DrawTextW
OffsetRect
GetKeyboardLayout
PeekMessageA
SetClassLongA
RedrawWindow
IsWindow
DeferWindowPos
ShowOwnedPopups
BeginDeferWindowPos
EnableWindow
DialogBoxParamA
EndDeferWindowPos
SetDlgItemTextA
ToAsciiEx
MsgWaitForMultipleObjects
RemovePropA
GetKeyboardState
GetWindowPlacement
SetWindowLongA
SetMenu
DrawMenuBar
EndMenu
CheckMenuItem
SetCursor
DestroyAcceleratorTable
ChangeDisplaySettingsW
SetFocus
ScrollWindowEx
ShowCaret
WaitMessage
GetCapture
UnionRect
CreateWindowExA
DrawStateW
EndDialog
SetWindowPos
CheckDlgButton
CreatePopupMenu
PostMessageA
SetMenuItemInfoA
GetCaretBlinkTime
CopyRect
GetMessageTime
RegisterClassA
GetMessageA
SetTimer
MapDialogRect
SendDlgItemMessageA
SetCapture
DeleteMenu
LoadIconA
CreateMenu
RegisterWindowMessageA
GetDoubleClickTime
InsertMenuItemW
DrawFocusRect
SetRect
GetScrollInfo
PeekMessageW
DestroyCursor
ShowWindow
IsDlgButtonChecked
EnableScrollBar
AppendMenuA
CreateCaret
RemoveMenu
DefDlgProcA
SystemParametersInfoA
SetWindowTextA
UpdateWindow
ToUnicode
DestroyIcon
SetScrollPos

gdi32

ExcludeClipRect
PolyPolyline
SelectPalette
GetCharABCWidthsFloatA
GetBitmapBits
MoveToEx
GetTextExtentPoint32A
SetMetaFileBitsEx
SetWindowExtEx
SetTextColor
CreateHatchBrush
Polygon
CreateFontA
GetDIBits
SetBkColor
GetRgnBox
GetEnhMetaFileHeader
SetPixel
PtInRegion
RectInRegion
GetCharWidthA
RealizePalette
SetPaletteEntries
GetDIBColorTable
EnumFontFamiliesA
GetCharWidth32A
CreatePatternBrush
Polyline
SetViewportExtEx
SetDIBColorTable
GetPixel
EqualRgn
RestoreDC
GetBrushOrgEx
TextOutA
GetStockObject
CreateICA
GetTextMetricsA
CreatePen
CreateRectRgn
GetTextExtentPointW
StretchDIBits
CreateCompatibleBitmap
CreatePenIndirect
DeleteObject
GetWindowOrgEx
ExtTextOutA
EndDoc
RectVisible
GetTextExtentExPointA
SetPolyFillMode
ExtCreateRegion
CreatePalette
CreateDCA
CopyEnhMetaFileA
CreateDIBSection
DeleteDC
GetBkMode
ExtFloodFill
SetWindowOrgEx
CreateFontIndirectA
MaskBlt
TranslateCharsetInfo
PolyPolygon
GetObjectA
RoundRect
GetClipBox
SetStretchBltMode
GetCharWidth32W
CreateBitmap
GetWinMetaFileBits
Arc
EndPage
SetROP2
SetWinMetaFileBits
CreateICW

advapi32

EqualSid
AllocateAndInitializeSid
RegDeleteKeyA
RegSetValueExA
RegEnumKeyA
GetLengthSid
GetUserNameA
SetSecurityDescriptorOwner
RegDeleteValueA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegQueryValueExA
CopySid
RegCreateKeyExA

shell32

CommandLineToArgvW

Sections

.text
Size: 1005KB - Virtual size: 1004KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.8MB - Virtual size: 31.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6df5548ea43327c1e9edaa78ea42ece

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 1005KB - Virtual size: 1004KB

.data Size: 5.8MB - Virtual size: 31.9MB

.idata Size: 7KB - Virtual size: 6KB

.rsrc Size: 20KB - Virtual size: 19KB

.reloc Size: 19KB - Virtual size: 18KB

.text
Size: 1005KB - Virtual size: 1004KB

.data
Size: 5.8MB - Virtual size: 31.9MB

.idata
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 20KB - Virtual size: 19KB

.reloc
Size: 19KB - Virtual size: 18KB