a66b822b37f0e6fa35688f92cdeacd7e0c762037340a792351724b815c7b3855

Sharing

Copy URL Twitter E-mail

General

Target

a66b822b37f0e6fa35688f92cdeacd7e0c762037340a792351724b815c7b3855
Size

229KB
MD5

554d6c815e6887665eeb1a7dc7b58260
SHA1

a65136ab9bb214c5bb626fa6f7f3b6a0dc0104ce
SHA256

a66b822b37f0e6fa35688f92cdeacd7e0c762037340a792351724b815c7b3855
SHA512

029f060e2b9bb6b5cf662a5b7baff05a0c67d56d695a88edfb79b07db49a169a4aae240b2e42ea8b8920490f517d2e0e87d73652b4856f3ecf8a105be210d11c
SSDEEP

6144:9X3AFDRxNY52Hbi+hLqNrVRP7n3oQHHp:9HAFDxY52kfvH

Score

N/A

Malware Config

Signatures

Files

a66b822b37f0e6fa35688f92cdeacd7e0c762037340a792351724b815c7b3855
.exe windows x86

abb4662ce9fbbdbfe13f999769eaf09c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
AddConsoleAliasW
WritePrivateProfileSectionA
GetEnvironmentVariableA
ContinueDebugEvent
GetCommandLineW
GlobalCompact
GetCurrentProcess
GetSystemDefaultLCID
GetTickCount
GetSystemTimeAsFileTime
GetFileAttributesW
GetVolumeInformationA
GetConsoleAliasExesLengthW
MulDiv
GetTempPathW
GetConsoleOutputCP
GetStdHandle
SetLastError
GetThreadLocale
IsValidCodePage
GetModuleHandleA
GetCurrentThreadId
GetDiskFreeSpaceExA
GetVersion
GetVolumeInformationW
GlobalAddAtomA
GetDriveTypeA
FindResourceExW

user32

ShowWindow
GetDesktopWindow
wvsprintfA
CreateWindowStationA
TrackPopupMenuEx
SetRectEmpty
LoadIconA
EndPaint
LoadImageA
EmptyClipboard
IsCharAlphaNumericA
CallWindowProcW
FindWindowA
OpenClipboard
IsWindow
SetClassLongW
DdeUninitialize
SetWindowLongA
CheckMenuRadioItem
MapVirtualKeyA
GetDoubleClickTime
wsprintfW
GetClassLongW
IsCharAlphaW
CharPrevW
InvalidateRgn
GetFocus
ReuseDDElParam
GetLastActivePopup
IsZoomed
SetCapture
CharNextW
GetMessageW
VkKeyScanW
DestroyWindow
IsCharUpperA
SendMessageTimeoutA

gdi32

SetViewportExtEx
GetStockObject

ole32

CoInitialize

Exports

Exports

?BeefFailPokyMawnRobsizarrep@@YGEJPCU_GUID@@PCDPC_W@Z
?ClefwalkGuffNabsburdforaYourer@@YG_KPCI@Z
?FearrazeDourJumpplieBrutmi@@YGKACHACU_GUID@@ACUHartemuqi@@M@Z
?YardLunyYodhfohnplanbiomy@@YGKDPCIUToutVivaShay@@UtagPOINT@@_KACJ@Z

Sections

.text
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

abb4662ce9fbbdbfe13f999769eaf09c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Exports

Exports

Sections

.text Size: 98KB - Virtual size: 97KB

.data Size: 58KB - Virtual size: 58KB

.rsrc Size: 42KB - Virtual size: 42KB

.reloc Size: 29KB - Virtual size: 28KB

.text
Size: 98KB - Virtual size: 97KB

.data
Size: 58KB - Virtual size: 58KB

.rsrc
Size: 42KB - Virtual size: 42KB

.reloc
Size: 29KB - Virtual size: 28KB