c5916ed53652eb3989ab8a1150dd90b2c76e0cc41638db7ae77a5b918552c146

General

Target

c5916ed53652eb3989ab8a1150dd90b2c76e0cc41638db7ae77a5b918552c146
Size

164KB
MD5

12f9bcbf79f7b0fb8387675e60197a60
SHA1

4f4b8fd0c6860844644e08a50a66cbf905c3dac1
SHA256

c5916ed53652eb3989ab8a1150dd90b2c76e0cc41638db7ae77a5b918552c146
SHA512

7e5cda447be50a36b4243acc199f8b057191930d544a5a5663041624670b6ba3760b6eb29903096ec8529b978b00113a42a8e7c8d6c0655a8c681183c257deaf
SSDEEP

3072:xV55MCeDYnzPiribz6ytz+hMQmWcePC0Q5CDtgiSpRM64:t5MInGrin6y/XW7CAgig

Score

N/A

Malware Config

Signatures

Files

c5916ed53652eb3989ab8a1150dd90b2c76e0cc41638db7ae77a5b918552c146
.dll windows x86

c07b166e136d8379c67b9b16695b888e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
HeapFree
HeapAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
InitializeCriticalSection
RtlUnwind
HeapReAlloc
HeapSize
LeaveCriticalSection
VirtualQuery
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
LoadLibraryA
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualProtect
GetSystemInfo
DeleteCriticalSection
GetVersionExA
GetCommandLineA
GetCurrentThreadId
GetCurrentProcess
TerminateProcess
GetModuleHandleA
GetProcAddress
ExitProcess
SetEvent
CreateThread
CloseHandle
CreateEventA
Sleep
GetTickCount
InterlockedExchange
WaitForSingleObject

storm

ord506
ord501

fog

ord10014
ord10072
ord10042
ord10073
ord10068
ord10071
ord10079
ord10265
ord10070
ord10024
ord10069
ord10077
ord10012
ord10016
ord10075
ord10043

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c07b166e136d8379c67b9b16695b888e

Headers

File Characteristics

Imports

kernel32

storm

fog

Sections

.text Size: 28KB - Virtual size: 25KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 33KB

.reloc Size: 4KB - Virtual size: 3KB

.rmnet Size: 116KB - Virtual size: 116KB

.text
Size: 28KB - Virtual size: 25KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 33KB

.reloc
Size: 4KB - Virtual size: 3KB

.rmnet
Size: 116KB - Virtual size: 116KB