2081c30cb5b79c6121f4fd54f340b4e81886e2b0a8e6173e61411a930e4a6797

Sharing

Copy URL Twitter E-mail

General

Target

2081c30cb5b79c6121f4fd54f340b4e81886e2b0a8e6173e61411a930e4a6797
Size

87KB
MD5

71d57f58921f915bcb4a59582b4b12c0
SHA1

795b182290ac8bdbfe75adc36ad72e3e3d44cabf
SHA256

2081c30cb5b79c6121f4fd54f340b4e81886e2b0a8e6173e61411a930e4a6797
SHA512

a718d9b4d59fa7b5c092d661d9d94a339b0f5a85c85c358746ba1b095466fbaef877c0fb6563dafc54ad70199bd22d45e13394a71afeb22b1ec1654f58c3b01f
SSDEEP

1536:AgaPz4TcV5C09M46W4hVB/VAzt+7zfzADSf4+oKm+Hp2JalVsPLmBx9rfVDWodYj:AgaPz4TcVtMR+k7zfG+oKm4puaXrfNWr

Score

N/A

Malware Config

Signatures

Files

2081c30cb5b79c6121f4fd54f340b4e81886e2b0a8e6173e61411a930e4a6797
.exe windows x86

3c55102a0a2639a3d4fe91f8c0c3be5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
GetConsoleOutputCP
WriteConsoleW
GetConsoleMode
GetFileType
GetStdHandle
FormatMessageW
LocalFree
FreeLibrary
LoadLibraryExW
ReadConsoleW
SetConsoleMode
HeapSize
GetFullPathNameW
HeapAlloc
InterlockedCompareExchange
SetUnhandledExceptionFilter
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
InterlockedExchange
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
WriteFile
HeapFree
HeapSetInformation
GetLastError
GetProcessHeap
Sleep
SetThreadPreferredUILanguages

msvcrt

__wgetmainargs
_wsetlocale
__CxxFrameHandler3
_controlfp
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
??1type_info@@UAE@XZ
__set_app_type
__p__fmode
__p__commode
__setusermatherr
memset
_wcsicmp
_amsg_exit
_initterm
exit
_XcptFilter
_exit
_cexit
?terminate@@YAXXZ
_callnewh
malloc
_CxxThrowException
memcpy
towupper
wcsncmp
free
??0exception@@QAE@ABV0@@Z
??1exception@@UAE@XZ
?what@exception@@UBEPBDXZ
??0exception@@QAE@XZ
_wtoi64
_vsnwprintf

oleaut32

VariantClear
VariantInit
SysStringByteLen
SysAllocString
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreate
VariantCopy
SysFreeString
SysStringLen

ole32

CoSetProxyBlanket
CoCreateInstance
CoInitializeSecurity
CoInitializeEx

profapi

ord103

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3c55102a0a2639a3d4fe91f8c0c3be5b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

oleaut32

ole32

profapi

Sections

.text Size: 54KB - Virtual size: 54KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 29KB - Virtual size: 30KB

.text
Size: 54KB - Virtual size: 54KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 29KB - Virtual size: 30KB