b0a398eaf0c282d06a467ce167027e6db7dae7eaa091aab360f59d9f2c2444f5

Sharing

Copy URL Twitter E-mail

General

Target

b0a398eaf0c282d06a467ce167027e6db7dae7eaa091aab360f59d9f2c2444f5
Size

823KB
MD5

6a69b4b611ab2aabfd175408e7e465f0
SHA1

e5a1a89d5d6c2753205b6495ba089071e2a693e2
SHA256

b0a398eaf0c282d06a467ce167027e6db7dae7eaa091aab360f59d9f2c2444f5
SHA512

0b690ea9535e861a48437db4436edd5f719a7e8317dbd6aa0b65643fbc028b476a6eab0c8491222725ec2c191673d53a7220f84b6c41a970daca37f792bf18f6
SSDEEP

24576:bEES5VFrcs7MItj2XYt+/3yij4Es2NPV:bEES5VFrBMItj2XYtBiJsIV

Score

N/A

Malware Config

Signatures

Files

b0a398eaf0c282d06a467ce167027e6db7dae7eaa091aab360f59d9f2c2444f5
.exe windows x86

77ddb4089f8b482be30239bcc5c4fbee

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileTime
GetWindowsDirectoryA
GetEnvironmentVariableA
FindClose
GetFileSize
GetCurrentDirectoryW
SetFilePointer
CreateEventA
SetUnhandledExceptionFilter
GetProcessTimes
SetFileTime
WaitForSingleObject
CreateDirectoryW
FormatMessageA
GetConsoleMode
ReadFile
ExitProcess
GetProcAddress
FindFirstFileA
CloseHandle
FindFirstFileW
FreeLibrary
SetEvent
LoadLibraryA
GetLocalTime
UnmapViewOfFile
CreateThread
SetConsoleMode
WideCharToMultiByte
GetThreadTimes
FindNextFileA
GetSystemTime
CreateFileW
GetFileAttributesW
QueryPerformanceCounter
GetModuleHandleA
GetTickCount
GetCurrentThreadId
SystemTimeToFileTime
GetOverlappedResult
GetStdHandle
GetCurrentProcess
lstrcatA
GetModuleFileNameA
VirtualProtect
TerminateProcess
GetCurrentProcessId
GetCurrentThread
UnhandledExceptionFilter
IsDebuggerPresent
GetVersionExA
SetCurrentDirectoryW
WaitForMultipleObjects
GlobalMemoryStatus
MapViewOfFile
LocalFree
GetLastError
OpenProcess
FindNextFileW
MultiByteToWideChar
GetSystemTimeAdjustment
WriteFile
GetSystemDirectoryA
CreateFileA
CreateFileMappingA
LocalAlloc

user32

FindWindowA
GetForegroundWindow
GetClipboardOwner
GetQueueStatus
SendMessageA
GetCapture
GetCursorPos

advapi32

RegCreateKeyExA
RegSetValueExA
CopySid
RegOpenKeyA
RegCreateKeyA
GetUserNameA
RegDeleteValueA
GetLengthSid
RegDeleteKeyA
RegEnumKeyA
RegQueryValueExA
RegCloseKey

wsock32

WSAStartup

wtsapi32

WTSVirtualChannelClose

msvcrt

strcspn
system
fwrite
exit
malloc
strtol
remove
memset
fclose
fgetc
sprintf
fputc
memcpy
strcmp
atoi
_iob
fflush
memmove
tolower
_assert
getenv
fopen
_cexit
free
_vsnprintf
memchr
ungetc
_onexit
__set_app_type
sscanf
signal
strspn
puts
fread
__mb_cur_max
_isctype
strrchr
fprintf
fgets
realloc
atexit
abort
strncpy
qsort
printf
__p__environ
__getmainargs
strtoul
time
fputs
_pctype
_setmode
strcpy
strftime
strlen
__p__fmode
strchr

Sections

.text
Size: 487KB - Virtual size: 487KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.s6
Size: - Virtual size: 5.4MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.s1
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.s3
Size: 239KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.s4
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.s5
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77ddb4089f8b482be30239bcc5c4fbee

Headers

File Characteristics

Imports

kernel32

user32

advapi32

wsock32

wtsapi32

msvcrt

Sections

.text Size: 487KB - Virtual size: 487KB

.s6 Size: - Virtual size: 5.4MB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 832B

.s1 Size: 5KB - Virtual size: 4KB

.s3 Size: 239KB - Virtual size: 239KB

.s4 Size: 512B - Virtual size: 116B

.s5 Size: 46KB - Virtual size: 46KB

.tls Size: 512B - Virtual size: 57B

.rsrc Size: 33KB - Virtual size: 33KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 487KB - Virtual size: 487KB

.s6
Size: - Virtual size: 5.4MB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 832B

.s1
Size: 5KB - Virtual size: 4KB

.s3
Size: 239KB - Virtual size: 239KB

.s4
Size: 512B - Virtual size: 116B

.s5
Size: 46KB - Virtual size: 46KB

.tls
Size: 512B - Virtual size: 57B

.rsrc
Size: 33KB - Virtual size: 33KB

.reloc
Size: 4KB - Virtual size: 4KB