4fc6c3746a96b24ff0ca61fe3d01373e4130b74e3526e0609702de307314fd7a

Sharing

Copy URL Twitter E-mail

General

Target

4fc6c3746a96b24ff0ca61fe3d01373e4130b74e3526e0609702de307314fd7a
Size

70KB
MD5

42dc01c5de8a1cb44820ad4351402e50
SHA1

bec6a4b97f586eb8aef9ff5af1323b2d6a9bf8e4
SHA256

4fc6c3746a96b24ff0ca61fe3d01373e4130b74e3526e0609702de307314fd7a
SHA512

81d0afc8b7f862e2991b9324641cf98af52d1a02132f2cc7ffc33b76a67cce00bfd92f6499c4aedd5b0fd290bcfcbbb61f24a8cb75b4b58ab7dcb68128677f68
SSDEEP

1536:Xb3GrlUTsm4FXpRPn4M3HFlqubCi1YEJPyHCBUY4xC:XXTsmSXRSCEOkdY

Score

N/A

Malware Config

Signatures

Files

4fc6c3746a96b24ff0ca61fe3d01373e4130b74e3526e0609702de307314fd7a
.exe windows x86

57a19c7bbfdeda0280f80839ed3e2eda

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetProcAddress
GetTempPathA
LoadLibraryA
RtlUnwind
CreateFileA
VirtualProtect
SetLastError
GetModuleHandleW
lstrcpyW
lstrcmpW
lstrcatW
lstrcmpiW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
lstrlenW
ReadFile
GetStdHandle
MultiByteToWideChar
WideCharToMultiByte
LoadLibraryW
FreeLibrary
InterlockedIncrement
InterlockedDecrement
LocalFree
LocalAlloc
ReadConsoleW
GetTimeFormatW
WriteConsoleW
FormatMessageW
GetConsoleMode
FileTimeToSystemTime
SetConsoleMode
VerSetConditionMask
VerifyVersionInfoW
lstrcpynW
GetComputerNameExW

crtdll

__GetMainArgs
exit
raise
signal

framedyn

?ReleaseBuffer@CHString@@QAEXH@Z
?Compare@CHString@@QBEHPBG@Z
?Format@CHString@@QAAXPBGZZ
??YCHString@@QAEABV0@PBG@Z
?Left@CHString@@QBE?AV1@H@Z
?FindOneOf@CHString@@QBEHPBG@Z
?Mid@CHString@@QBE?AV1@H@Z
??4CHString@@QAEABV0@ABV0@@Z
?Find@CHString@@QBEHG@Z
??0CHString@@QAE@PBG@Z
??0CHString@@QAE@XZ
??4CHString@@QAEABV0@PBG@Z
??1CHString@@QAE@XZ
?GetData@CHString@@IBEPAUCHStringData@@XZ
?GetBufferSetLength@CHString@@QAEPAGH@Z
?Mid@CHString@@QBE?AV1@HH@Z

user32

LoadStringW
wsprintfW
CharUpperW

ole32

CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoInitializeEx
CoInitializeSecurity

mpr

WNetCancelConnection2W
WNetGetLastErrorW

secur32

GetUserNameExW

Sections

.text
Size: 7KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 480B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

57a19c7bbfdeda0280f80839ed3e2eda

Headers

File Characteristics

Imports

kernel32

crtdll

framedyn

user32

ole32

mpr

secur32

Sections

.text Size: 7KB - Virtual size: 12KB

.data Size: 57KB - Virtual size: 112KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 480B - Virtual size: 480B

.text
Size: 7KB - Virtual size: 12KB

.data
Size: 57KB - Virtual size: 112KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 480B - Virtual size: 480B