3ba66040d3bcf81bf958944ba4d65bf7883671967dc0dc57a886a73dc9dcab99

Sharing

Copy URL Twitter E-mail

General

Target

3ba66040d3bcf81bf958944ba4d65bf7883671967dc0dc57a886a73dc9dcab99
Size

634KB
MD5

3c6b4fe8dcb553a7f960e16edd3dfc70
SHA1

d720ea8d7229244a9e57853929ca07a7b51fb47f
SHA256

3ba66040d3bcf81bf958944ba4d65bf7883671967dc0dc57a886a73dc9dcab99
SHA512

bba5754302c651d455a315bd918d73a80514eeabe5d95a53c118e6b06f8cadc5b5f9edc660bad97da668234f0eed0cf36598272d96ddf0cbad5b878a6e8c9e6d
SSDEEP

12288:kUVGWzawCjDeBPIo/6PsmoIDmrnRbyzz7wF4GdzFB6k17/3NYTfG:d0WWwI9o/+smjebyH7g4GtKke+

Score

N/A

Malware Config

Signatures

Files

3ba66040d3bcf81bf958944ba4d65bf7883671967dc0dc57a886a73dc9dcab99
.exe windows x86

380bb52dc167c51ee54c1ab997f77c31

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetVersion
GetFullPathNameW
FileTimeToDosDateTime
DosDateTimeToFileTime
GetFileSize
CreateDirectoryW
GetFileAttributesExA
SetFileTime
GetFileAttributesW
MultiByteToWideChar
SetFileAttributesA
GetProcAddress
FileTimeToLocalFileTime
GetCurrentProcessId
LocalFileTimeToFileTime
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
GetModuleHandleA
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InterlockedCompareExchange
InterlockedExchange
GetLastError
CreateFileW
Sleep
GetModuleHandleW
GetFileAttributesExW
CreateFileA
GetTickCount

msvcrt

ctime
_iob
_open_osfhandle
_lseek
time
_write
_eof
fclose
exit
remove
memmove_s
_tempnam
_stat
__doserrno
_mkdir
_vsnprintf
_unlink
feof
clock
fread
ferror
fwrite
_XcptFilter
__p__commode
_amsg_exit
__getmainargs
__set_app_type
_exit
_cexit
__p__fmode
__setusermatherr
_initterm
?terminate@@YAXXZ
_controlfp
_except_handler4_common
fprintf
setvbuf
_read
fopen
tolower
_ltoa_s
_errno
_open
_strnicmp
strpbrk
atol
strspn
toupper
isdigit
printf
atoi
strchr
strncmp
_stricmp
_strdup
malloc
free
_close
_ftol2_sse
memcmp
memcpy
memset

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

user32

CharNextExA

cabinet

ord13
ord14
ord12
ord11
ord10

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 564KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

380bb52dc167c51ee54c1ab997f77c31

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

version

user32

cabinet

Sections

.text Size: 56KB - Virtual size: 55KB

.data Size: 8KB - Virtual size: 8KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 564KB - Virtual size: 1.7MB

.text
Size: 56KB - Virtual size: 55KB

.data
Size: 8KB - Virtual size: 8KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 564KB - Virtual size: 1.7MB