3d76b8721f537ea770aca618c0b0c3425db8ca91d70d2fc8f6c3f89e070784a0

Sharing

Copy URL

Twitter E-mail

General

Target

3d76b8721f537ea770aca618c0b0c3425db8ca91d70d2fc8f6c3f89e070784a0
Size

590KB
MD5

80fc4c593291c3eb22c40767059eb6f0
SHA1

74dca4f67bd0813b3cc3ce365301f3112982e194
SHA256

3d76b8721f537ea770aca618c0b0c3425db8ca91d70d2fc8f6c3f89e070784a0
SHA512

d8332149c1cb893bfe9fc20dd3b8dc47e433e7cf4f09e44f3f800f21fba7a2086c011b89fbad848064e11334e532b683d8f7ddd54aa0790d896eb8acc6ab2fd5
SSDEEP

12288:7hbl05lPXN837rQsY3aXgz0OYIqCw3j0B7p5Ce182ACG+Ass:7OpXErMaEYI/w3j0xp5x182ACG+Xs

Score

N/A

Malware Config

Signatures

Files

3d76b8721f537ea770aca618c0b0c3425db8ca91d70d2fc8f6c3f89e070784a0
.exe windows x64

8d4f9401dab8d5b7b8583a9bf86da629

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

advapi32

EnableTraceEx
ControlTraceW
CloseTrace
StartTraceW
OpenTraceW
ProcessTrace

kernel32

GetModuleHandleW
WriteFile
WideCharToMultiByte
RaiseException
GetConsoleOutputCP
GetStdHandle
SetThreadPreferredUILanguages
HeapSetInformation
GetUserDefaultLangID
FormatMessageW
CreateFileW
lstrlenW
GetLastError
SetConsoleCtrlHandler
CloseHandle
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetCurrentThreadId

msvcrt

??0exception@@QEAA@AEBV0@@Z
getchar
_CxxThrowException
__CxxFrameHandler3
__wgetmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
_initterm
_amsg_exit
__setusermatherr
_commode
wcsrchr
__set_app_type
??1type_info@@UEAA@XZ
?terminate@@YAXXZ
memcpy
??0exception@@QEAA@AEBQEBD@Z
??0exception@@QEAA@XZ
??1exception@@UEAA@XZ
?what@exception@@UEBAPEBDXZ
_vsnwprintf
_fmode
memcpy_s
printf
_wcsnicmp
_wcsicmp
memmove_s
wcsstr
memset

ntdll

RtlLookupFunctionEntry
RtlVirtualUnwind
RtlAllocateHeap
RtlFreeHeap
RtlCaptureContext

user32

LoadStringW

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 556KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8d4f9401dab8d5b7b8583a9bf86da629

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

msvcrt

ntdll

user32

Sections

.text Size: 28KB - Virtual size: 28KB

.data Size: 512B - Virtual size: 43KB

.pdata Size: 2KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 556KB - Virtual size: 2.4MB

.text
Size: 28KB - Virtual size: 28KB

.data
Size: 512B - Virtual size: 43KB

.pdata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 556KB - Virtual size: 2.4MB