f7776c49a5541385dd51065fa718573a80b5ba8a7afb3859f4659e654134697a

Sharing

Copy URL Twitter E-mail

General

Target

f7776c49a5541385dd51065fa718573a80b5ba8a7afb3859f4659e654134697a
Size

266KB
MD5

91d9f666bfe2fb5779f1b1b8aa58ec20
SHA1

81054bbf857074915e5b8705a858a4ba208a59d6
SHA256

f7776c49a5541385dd51065fa718573a80b5ba8a7afb3859f4659e654134697a
SHA512

60ef933b4fe79454e311fae08130a8df81ca812c13abcb95213054e8927baf61079b5b65da6ce5cc0c8c7dee153c74b60f7b0436d902d6c442ccf5bd413d035c
SSDEEP

6144:v56qIaojDVNXWWXlMuOZIbWFmV2nNh/Mq4Rm4jTI4K2:v56qIaojDVVWWXCuOybimGxi44fp

Score

N/A

Malware Config

Signatures

Files

f7776c49a5541385dd51065fa718573a80b5ba8a7afb3859f4659e654134697a
.exe windows x86

68717bdc6212ce6e36976f4c27233004

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
lstrcpyA
lstrlenA
WaitForSingleObject
CloseHandle
Sleep
MultiByteToWideChar
lstrcmpiA
GetTickCount
OpenEventA
SetErrorMode
CopyFileA
GetModuleFileNameA
lstrcmpA
LocalFree
RaiseException
InterlockedExchange
LocalAlloc
FreeLibrary
GetStartupInfoA
GetModuleHandleA
GetLastError

msvcp60d

?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

msvcrtd

memset
strncmp
strncpy
strcmp
strcat
free
strcpy
strchr
_errno
wcscpy
_CrtDbgReport
atoi
??2@YAPAXI@Z
putchar
_CxxThrowException
_beginthreadex
_except_handler3
rand
puts
sprintf
memmove
ceil
strstr
vsprintf
memcmp
strncat
rename
calloc
??1type_info@@UAE@XZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
__dllonexit
_onexit
__CxxFrameHandler
strlen
malloc
memcpy
_ftol
strrchr
strtok
_strnicmp
_strupr

Sections

.text
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68717bdc6212ce6e36976f4c27233004

Headers

File Characteristics

Imports

kernel32

msvcp60d

msvcrtd

Sections

.text Size: 208KB - Virtual size: 207KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 16KB - Virtual size: 16KB

.idata Size: 4KB - Virtual size: 2KB

.didat Size: 4KB - Virtual size: 2KB

.reloc Size: 8KB - Virtual size: 6KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 208KB - Virtual size: 207KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 16KB - Virtual size: 16KB

.idata
Size: 4KB - Virtual size: 2KB

.didat
Size: 4KB - Virtual size: 2KB

.reloc
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 4KB - Virtual size: 4KB