0b7ad35312e05dc463f3d7d8d83970af7ad317f1fc0d23d2b8bce811ffaeda59

Sharing

Copy URL Twitter E-mail

General

Target

0b7ad35312e05dc463f3d7d8d83970af7ad317f1fc0d23d2b8bce811ffaeda59
Size

915KB
MD5

69884fa76c51804827f9faadf1be1b20
SHA1

4099bc1fb5c07b9df8468cb89a246e57afeab4be
SHA256

0b7ad35312e05dc463f3d7d8d83970af7ad317f1fc0d23d2b8bce811ffaeda59
SHA512

b8512cd49858e2787a916644379609343d4b80965abffd00e184a6111c53a54465cdcc4264cabdbbce4fa02f2f8deccb77949a9a69df1dc28c579c3e44fa8a24
SSDEEP

24576:LX/Ba2BhaeE2FXNYkVwuWvPioN0+OOz6/4auEMCvR1:qeEYXNVAP4/4auK

Score

N/A

Malware Config

Signatures

Files

0b7ad35312e05dc463f3d7d8d83970af7ad317f1fc0d23d2b8bce811ffaeda59
.exe windows x86

107cc2b04f9601caf60a410bacc5b092

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
InterlockedExchange
Sleep
TlsGetValue
TlsSetValue
TlsFree
TlsAlloc
SetLastError
WaitForSingleObject
GetThreadLocale
LoadLibraryA
GetStdHandle
FormatMessageA
GetLastError
IsDebuggerPresent
GetModuleHandleA
WriteFile
GetProcAddress
CreateFileA
SetFilePointer
FreeLibrary
GetFileType
ReleaseMutex
CreateMutexA
GetCurrentThreadId
VirtualAlloc
VirtualFree
SetEndOfFile
SetConsoleCtrlHandler
GetACP
GetCommandLineA
SetErrorMode
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
TerminateThread
SetEvent
ExitThread
CreateEventA
CreateThread
GetFileInformationByHandle
GetFullPathNameA
GetTempFileNameA
GetTempPathA
ReadFile
OpenFileMappingA
CreateFileMappingA
MapViewOfFile
IsBadReadPtr
GetHandleInformation
UnmapViewOfFile
CreateProcessA
SetThreadPriority
GetVersionExA
DeleteFileA
FlushFileBuffers
ResumeThread
GetModuleHandleW
InterlockedIncrement
InterlockedDecrement
ExitProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapValidate
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
SetStdHandle
GetCurrentProcessId
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetStartupInfoA
GetCurrentThread
HeapDestroy
HeapCreate
HeapFree
TerminateProcess
GetCurrentProcess
GetModuleFileNameW
FatalAppExitA
RtlUnwind
GetOEMCP
GetCPInfo
IsValidCodePage
InitializeCriticalSectionAndSpinCount
MultiByteToWideChar
LCMapStringA
LCMapStringW
HeapAlloc
HeapSize
HeapReAlloc
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
DebugBreak
OutputDebugStringA
OutputDebugStringW
LoadLibraryW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetStringTypeA
GetStringTypeW
GetLocaleInfoW
GetLocaleInfoA
GetTimeFormatA
GetDateFormatA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
RaiseException
lstrlenA
GetProcessHeap
GetTimeZoneInformation
VirtualQuery

imagehlp

SymCleanup
StackWalk
SymInitialize

Sections

.text
Size: 743KB - Virtual size: 743KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 147KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.trace
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

107cc2b04f9601caf60a410bacc5b092

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

imagehlp

Sections

.text Size: 743KB - Virtual size: 743KB

.text1 Size: 512B - Virtual size: 208B

.rdata Size: 147KB - Virtual size: 146KB

.data Size: 14KB - Virtual size: 61KB

.trace Size: 8KB - Virtual size: 7KB

.rsrc Size: 512B - Virtual size: 436B

.text
Size: 743KB - Virtual size: 743KB

.text1
Size: 512B - Virtual size: 208B

.rdata
Size: 147KB - Virtual size: 146KB

.data
Size: 14KB - Virtual size: 61KB

.trace
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 512B - Virtual size: 436B