malware_smoke_2956503133

Sharing

Copy URL Twitter E-mail

General

Target

malware_smoke_2956503133
Size

302KB
MD5

063baa25079fa6a14940119486d4eaf7
SHA1

53df40011b027bc8403cfb0235689b369ec64bfe
SHA256

ecba39ccfcb2b86cf516b880558ef681a22a0e3d6e7530c73dde0e9674032ad4
SHA512

178f3dc26abe9bc678e07159df13357d27b05c76a2a624b511d563024a24434eb7b57c364fbbd98933319b2a76ef51a2945284d9e95ec0516ea22cb1652447e7
SSDEEP

6144:F7ZkEgTgEPYTO4DqJIixhN0Dr2zm2PDzGhLVld:F7ZkEXEPWO4DqJjNi2jWx

Score

N/A

Malware Config

Signatures

Files

malware_smoke_2956503133
.exe windows x86

a7fc6d306079fffeda49d8bcc83bfd62

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextVolumeA
LeaveCriticalSection
GetNamedPipeHandleStateW
FileTimeToLocalFileTime
ExitProcess
GetCurrentProcessId
GetVersionExA
EnumDateFormatsExW
FillConsoleOutputCharacterA
EnumResourceNamesA
FindNextFileA
CopyFileExW
BuildCommDCBAndTimeoutsA
SetDefaultCommConfigA
WritePrivateProfileStructA
HeapSetInformation
CreateTimerQueue
ReadConsoleInputA
GetSystemDirectoryW
GetDriveTypeA
GetProcAddress
LoadLibraryA
GlobalAlloc
VerifyVersionInfoA
GetBinaryTypeA
GetProfileSectionW
InterlockedDecrement
ReadConsoleOutputCharacterA
FindFirstChangeNotificationW
FormatMessageW
SetDllDirectoryW
GetQueuedCompletionStatus
WritePrivateProfileStringW
GetConsoleAliasesLengthW
GetProcessHeap
OpenWaitableTimerA
UnlockFile
InterlockedIncrement
GetStartupInfoW
GetSystemWow64DirectoryW
SetLastError
GetConsoleAliasExesA
ContinueDebugEvent
EndUpdateResourceW
GetLastError
FatalAppExitA
SetSystemTime
OpenFileMappingA
lstrcmpW
TerminateThread
SetConsoleActiveScreenBuffer
SetDefaultCommConfigW
VirtualFree
InterlockedCompareExchange
GlobalUnfix
GetSystemWindowsDirectoryA
CopyFileW
TerminateProcess
GetACP
FindAtomA
lstrcatW
HeapWalk
SetMailslotInfo
CreateActCtxA
_lread
GetOverlappedResult
CreateNamedPipeW
GetAtomNameA
SetConsoleScreenBufferSize
EnumResourceTypesW
lstrlenA
EndUpdateResourceA
WriteConsoleA
VirtualProtect
lstrcpyA
ReadConsoleOutputA
SetThreadContext
BuildCommDCBW
ReleaseActCtx
GetStringTypeW
GetPrivateProfileStringW
GetFileAttributesW
GetVolumePathNameA
MoveFileW
SetCommMask
SetFileShortNameA
VerLanguageNameA
LockFile
EnumDateFormatsA
ProcessIdToSessionId
PostQueuedCompletionStatus
FreeConsole
GlobalGetAtomNameW
SetComputerNameA
GetConsoleAliasExesLengthW
WriteConsoleInputW
CreateMailslotA
TzSpecificLocalTimeToSystemTime
SetLocalTime
GetStringTypeExW
EnumSystemLocalesW
CallNamedPipeA
GetConsoleAliasExesLengthA
FindActCtxSectionStringW
CopyFileA
ResetWriteWatch
GetPrivateProfileIntW
GetModuleHandleW
GetTickCount
OpenWaitableTimerW
GetConsoleAliasesLengthA
GlobalWire
FillConsoleOutputCharacterW
GetCompressedFileSizeW
SetThreadPriority
MapUserPhysicalPages
WriteConsoleOutputCharacterA
EnumDateFormatsW
QueryInformationJobObject
CreateFileW
GetDateFormatW
BuildCommDCBAndTimeoutsW
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
RaiseException
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleFileNameW
RtlUnwind
HeapValidate
IsBadReadPtr
TlsGetValue
TlsAlloc
TlsSetValue
GetCurrentThreadId
TlsFree
DebugBreak
GetStdHandle
WriteFile
OutputDebugStringA
WriteConsoleW
GetFileType
OutputDebugStringW
LoadLibraryW
QueryPerformanceCounter
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
HeapFree
GetModuleFileNameA
FlushFileBuffers
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
HeapAlloc
HeapSize
HeapReAlloc
VirtualAlloc
GetOEMCP
GetCPInfo
IsValidCodePage
InitializeCriticalSectionAndSpinCount
MultiByteToWideChar
SetStdHandle
GetConsoleOutputCP
SetFilePointer
LCMapStringA
LCMapStringW
GetStringTypeA
GetLocaleInfoA
CloseHandle
CreateFileA

Sections

.text
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 330KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a7fc6d306079fffeda49d8bcc83bfd62

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 158KB - Virtual size: 158KB

.data Size: 79KB - Virtual size: 330KB

.rsrc Size: 64KB - Virtual size: 63KB

.text
Size: 158KB - Virtual size: 158KB

.data
Size: 79KB - Virtual size: 330KB

.rsrc
Size: 64KB - Virtual size: 63KB