9101f43d294ab9c971db9566f795a6b0d30b5fd0d438bf50d1d5f03d532545d2

Sharing

Copy URL Twitter E-mail

General

Target

9101f43d294ab9c971db9566f795a6b0d30b5fd0d438bf50d1d5f03d532545d2
Size

128KB
MD5

667a6330c2db5d1beb22c796a360dad7
SHA1

53e57c93a4c75f1111b5407c238993417b897af2
SHA256

9101f43d294ab9c971db9566f795a6b0d30b5fd0d438bf50d1d5f03d532545d2
SHA512

54a00a0cd642800f50af9d35d359bd350c0d1cb8a5db0d1b1445afd92979860fb01b90920d9b14c88c1f318a6cf3490f2fa535fb43f0afa2fc3d18a92e67c7d2
SSDEEP

1536:jRY1BALL7tQPNPaCuAvHsLorq50O/Cc+StVo+1ABeibdSpDu5fSQRCVi/NHW:swiPQCuA4o+50OKc+qi+1SXZSbi/N2

Score

N/A

Malware Config

Signatures

Files

9101f43d294ab9c971db9566f795a6b0d30b5fd0d438bf50d1d5f03d532545d2
.exe windows x86

2a49857eb4061cd9db565bdd3da2bc25

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

pncrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
??2@YAPAXI@Z
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
free
_onexit
__dllonexit
time
gmtime
asctime
vsprintf
realloc
malloc
_vsnprintf
strstr
strrchr
_putenv
_itoa
_purecall
??3@YAXPAX@Z
atoi
getenv
printf
sprintf
memmove
_mbctype
strncpy
strchr
_stricmp

kernel32

SetFilePointer
GetStartupInfoA
GetFileAttributesA
GetModuleHandleA
GlobalMemoryStatus
OpenProcess
IsBadWritePtr
VirtualQuery
GetThreadContext
WriteFile
GetCurrentProcessId
CreateFileA
WaitForMultipleObjects
SetEvent
LocalFree
SetErrorMode
ReleaseMutex
CloseHandle
GetLastError
CreateMutexA
InterlockedDecrement
InterlockedIncrement
GetProcAddress
LoadLibraryA
FreeLibrary
WinExec
OpenMutexA
GetSystemInfo
GetVersionExA
GetVersion
GetCurrentThreadId
CreateThread
GetModuleFileNameA
SetUnhandledExceptionFilter
TerminateThread
WaitForSingleObject
GetCurrentProcess
CreateEventA
MoveFileA
DeleteFileA
SetCurrentDirectoryA
CreateDirectoryA
GetCurrentDirectoryA
SetProcessWorkingSetSize

user32

GetDC
DefWindowProcA
BeginPaint
ReleaseDC
CharNextA
GetSystemMetrics
IsWindow
KillTimer
DestroyMenu
DestroyIcon
GetSubMenu
SetTimer
PostQuitMessage
RegisterWindowMessageA
EndPaint
CreateWindowExA
ShowWindow
FindWindowA
PostMessageA
LoadCursorA
RegisterClassExA
TranslateMessage
UpdateWindow
GetMessageA
DispatchMessageA

advapi32

RegDeleteKeyA
RegCreateKeyA
RegCloseKey
FreeSid
RegEnumKeyExA
RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA
RegSetValueA
RegQueryValueA
RegOpenKeyA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA

version

GetFileVersionInfoA
VerQueryValueA

gdi32

GetDeviceCaps

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2a49857eb4061cd9db565bdd3da2bc25

Headers

File Characteristics

Imports

pncrt

kernel32

user32

advapi32

version

gdi32

Sections

.text Size: 40KB - Virtual size: 37KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 8KB - Virtual size: 5KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 40KB - Virtual size: 37KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 8KB - Virtual size: 5KB

.rmnet
Size: 60KB - Virtual size: 60KB