malware_smoke_4281809129

General

Target

malware_smoke_4281809129
Size

1.1MB
MD5

36c1160582e33d62df2c29a938f4a86f
SHA1

af1133a8a223a965a18bc15bdf69711fc5128e3b
SHA256

1fc8724cc19df186b45a21260de7dc73ff1d915f7bdbce74f92429d1a517b50b
SHA512

3cdf130b1b8494d2442b9796127a8f2638516e54fc6e81691a7ceb1aaed6a505dc5d93ef8c8a42511f283828d03ebc0338e66d1be319f990f13daba4481bea57
SSDEEP

12288:q6sLNmPc68E1+wdxGhJOKzrKUzXJiUIur36CtGNe+vkjeL9mwFCNunVC+YqBSLaf:qpQc69+J7KczIS/72yN8VrwjYgaiL

Score

N/A

Malware Config

Signatures

Files

malware_smoke_4281809129
.exe windows x86

228816d69bd3a411b4d5428ddd50c94c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleAliasesA
GetConsoleTitleA
FindActCtxSectionStringA
GetVolumePathNameW
GetEnvironmentStrings
GetPrivateProfileIntA
LoadLibraryW
LeaveCriticalSection
ReplaceFileW
GetAtomNameW
SetConsoleTitleA
GetStdHandle
GetLastError
GetProcAddress
VirtualAlloc
SetVolumeMountPointW
SetStdHandle
SetComputerNameA
WriteConsoleA
LocalAlloc
BeginUpdateResourceA
WriteProfileSectionW
GlobalFindAtomW
GetModuleFileNameA
GetDefaultCommConfigA
GetModuleHandleA
GetFileTime
SetCalendarInfoA
LocalFree
LCMapStringW
SetFilePointer
GetLocaleInfoA
HeapSize
FindFirstChangeNotificationW
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
HeapFree
CloseHandle
EnterCriticalSection
GetModuleHandleW
Sleep
ExitProcess
WriteFile
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RaiseException
HeapReAlloc
FlushFileBuffers
RtlUnwind
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetConsoleOutputCP
WriteConsoleW
MultiByteToWideChar
LCMapStringA
GetStringTypeA
GetStringTypeW
CreateFileA

gdi32

GetTextExtentExPointA

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

228816d69bd3a411b4d5428ddd50c94c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 1.0MB - Virtual size: 1.0MB

.data Size: 25KB - Virtual size: 2.1MB

.rsrc Size: 27KB - Virtual size: 27KB

.text
Size: 1.0MB - Virtual size: 1.0MB

.data
Size: 25KB - Virtual size: 2.1MB

.rsrc
Size: 27KB - Virtual size: 27KB