04169401cdaa2e592c3c7431c63880ad22bbea2eef85c45d7f0815560f808d71

Sharing

Copy URL Twitter E-mail

General

Target

04169401cdaa2e592c3c7431c63880ad22bbea2eef85c45d7f0815560f808d71
Size

171KB
MD5

07ef2172cce93835d6ad33fc347c5de2
SHA1

11ee85c4c0c4adbc51586d097a1b39763874c052
SHA256

04169401cdaa2e592c3c7431c63880ad22bbea2eef85c45d7f0815560f808d71
SHA512

204604d1710c9df335aeedd2f46f5a06982820e5c2809f7ee942ed2ed11167aa0cd4ef42eada268a435f3b5a4bec305e1cbef6b18bf2b74d61672dcc85384058
SSDEEP

3072:c/ahjKkLUBF9ePIMVAgw3N2HUzbYBdgygemrHo9wEbC+esU7tu09+Q0Q7hrP2:PBLUBFjMa3NeUQBlYiwO/UMyXtP

Score

N/A

Malware Config

Signatures

Files

04169401cdaa2e592c3c7431c63880ad22bbea2eef85c45d7f0815560f808d71
.exe windows x86

1f1f9810b9ddeb871e2773a627047d54

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ConnectNamedPipe
GetSystemTimeAdjustment
SizeofResource
GetSystemDirectoryA
lstrcmpiA
TlsSetValue
MulDiv
GlobalAlloc
IsBadStringPtrW
RegisterWaitForSingleObject
EnumResourceNamesA
GetSystemDirectoryW
GlobalAddAtomW
GlobalDeleteAtom
SetThreadPriority
CreateSemaphoreA
GlobalMemoryStatus
GetThreadLocale
GetSystemDefaultLangID
HeapCreate
CreateEventW
TlsFree
LoadLibraryA
GetACP
DeleteCriticalSection
SleepEx
EnumResourceNamesW
ReleaseSemaphore
GetCommTimeouts
GetSystemTime
ResumeThread
GetTempPathW
GetComputerNameA
SetSystemTime
FormatMessageA
FileTimeToSystemTime
SetCurrentDirectoryW
SetWaitableTimer
CreateFileW
lstrcpyW
CreateMailslotW
GetThreadContext
GetBinaryTypeA
GetTimeFormatW
SetCurrentDirectoryA
RemoveDirectoryA
HeapAlloc
WriteFile
MoveFileExA
CreateFileA
EscapeCommFunction
HeapWalk
MoveFileA
IsBadReadPtr
PulseEvent
OpenFile
FreeResource
LockFile
GetCommState
GetStringTypeExW
HeapFree
GetFileAttributesExA
CloseHandle
GetSystemTimeAsFileTime
GetTimeFormatA
GetVersionExA
SetFileAttributesW
GetDateFormatA
WaitCommEvent
WaitForSingleObjectEx
GetPriorityClass
GetCompressedFileSizeW
lstrcpynW
VerSetConditionMask
EnumSystemLocalesA
EnterCriticalSection
GetFileType
GlobalLock
LocalAlloc
OpenSemaphoreW
IsDBCSLeadByteEx
lstrlenW
lstrcmpW
GetVersion
FreeLibrary
CreateDirectoryW
AreFileApisANSI
SetCommTimeouts
LoadLibraryW
GetExitCodeThread
HeapLock
FindResourceW
CompareStringW
GetNumberFormatW
CreateWaitableTimerW
SetupComm
SearchPathW
GlobalHandle
FindResourceExA
FindFirstFileW
GetShortPathNameW
FindResourceA
GetLastError
WinExec
GlobalReAlloc
FindFirstChangeNotificationW
WaitForMultipleObjects
GetThreadTimes
GlobalMemoryStatusEx
QueryDosDeviceW
FoldStringW

Exports

Exports

?AightDialog@@YGEUtext@@@Z
?GoodAimTFS@@YGEUtext@@@Z
?GoodLowmFire@@YGEUtext@@@Z
?MainPort@@YGEUtext@@@Z
?NineDialog@@YGEUtext@@@Z

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.okan
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.push3
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f1f9810b9ddeb871e2773a627047d54

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 37KB - Virtual size: 37KB

.idata Size: 2KB - Virtual size: 2KB

.data Size: 32KB - Virtual size: 32KB

.okan Size: 16KB - Virtual size: 16KB

.push3 Size: 16KB - Virtual size: 15KB

.rsrc Size: 63KB - Virtual size: 63KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 37KB - Virtual size: 37KB

.idata
Size: 2KB - Virtual size: 2KB

.data
Size: 32KB - Virtual size: 32KB

.okan
Size: 16KB - Virtual size: 16KB

.push3
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 63KB - Virtual size: 63KB

.reloc
Size: 2KB - Virtual size: 1KB