9dd657f729c325494d43ef3c9d0a92f019dbcc10140476de3881e31f7d513e59

Sharing

Copy URL

Twitter E-mail

General

Target

9dd657f729c325494d43ef3c9d0a92f019dbcc10140476de3881e31f7d513e59
Size

59KB
MD5

76083ee0846422657a3ac7eef13a8d20
SHA1

7eabe38c68cc942ddb24a0307e553030477e276e
SHA256

9dd657f729c325494d43ef3c9d0a92f019dbcc10140476de3881e31f7d513e59
SHA512

c9e585e60491b4b2fb6688cef7c5b8006bb99becdb0653682bf1669109340ee07182dcf2c4ff41acb6089e4398ebce6217f6f39fed4ef4f836d481d4186c950d
SSDEEP

768:sGGX7id5gEq1DCQoOXrEr9lTqdTV35hkYoTf9xKjye38gUWjoc+rMt:sGGrigEq9MObkfedTXhMbKz38gUWcz2

Score

N/A

Malware Config

Signatures

Files

9dd657f729c325494d43ef3c9d0a92f019dbcc10140476de3881e31f7d513e59
.exe windows x86

91628e3169b66df1d6a2251f4f6c954d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

miktex209-core

?WideCharToUTF8@Utils@Core@MiKTeX@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PB_W@Z

miktex209-mkfntmap

mkfntmap

msvcp100

?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z

msvcr100

_exit
_XcptFilter
exit
__winitenv
_initterm
_initterm_e
_configthreadlocale
__CxxFrameHandler3
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_cexit
__dllonexit
_lock
_onexit
_except_handler4_common
_invoke_watson
_controlfp_s
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??2@YAPAXI@Z
memmove
memcpy
??3@YAXPAX@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
__wgetmainargs
_unlock
_amsg_exit
__setusermatherr

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
DecodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
EncodePointer
HeapSetInformation
InterlockedCompareExchange
Sleep
InterlockedExchange
GetTickCount

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 392B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

91628e3169b66df1d6a2251f4f6c954d

Headers

DLL Characteristics

File Characteristics

Imports

miktex209-core

miktex209-mkfntmap

msvcp100

msvcr100

kernel32

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 1KB

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 392B

.reloc Size: 28KB - Virtual size: 29KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 1KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 392B

.reloc
Size: 28KB - Virtual size: 29KB