a983ffc1f0c11726bbdd944746fd143b3e13cc01694beebf23eb53d23980a6c8

Sharing

Copy URL Twitter E-mail

General

Target

a983ffc1f0c11726bbdd944746fd143b3e13cc01694beebf23eb53d23980a6c8
Size

90KB
MD5

4131e3661cbe45c90be754acdcf4c470
SHA1

b54ca8effd0e16231f8249fb722b275ef9e913e6
SHA256

a983ffc1f0c11726bbdd944746fd143b3e13cc01694beebf23eb53d23980a6c8
SHA512

e2b0d7e595ea25f9d5d41bc808cd11acc8e8628ff2446272afc9dbdfd5510028bea3fee9660b7317c8b9d3b6950ac8130b5524834bfd322073ed6ddb18f3f27f
SSDEEP

1536:xRc9HSAbO1Q/puO4KKc5eURFs5YhOIOxwwGu8wgJw+b+Bf7LDh0VVSGjFQkiat:xRcg6O1Q/puQeURFhAGwGu86t7JLe1i8

Score

N/A

Malware Config

Signatures

Files

a983ffc1f0c11726bbdd944746fd143b3e13cc01694beebf23eb53d23980a6c8
.exe windows x86

3daf2a4e1852ab77d93b924798c0150c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
LoadLibraryA
GetLastError
FreeLibrary
GetProcAddress
LocalAlloc
GetCommandLineW
GetCommandLineA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
InterlockedCompareExchange
InterlockedExchange
RaiseException

qtcore4

??0QFile@@QAE@ABVQString@@@Z
??1QString@@QAE@XZ
?append@QString@@QAEAAV1@ABV1@@Z
??0QString@@QAE@ABV0@@Z
?fromAscii@QString@@SA?AV1@PBDH@Z
??0QString@@QAE@PBD@Z
?shared_null@QVectorData@@2U1@A
??0QByteArray@@QAE@XZ
?WindowsVersion@QSysInfo@@2W4WinVersion@1@B
?fromUtf16@QString@@SA?AV1@PBGH@Z
?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ
??4QByteArray@@QAEAAV0@ABV0@@Z
??1QByteArray@@QAE@XZ
??4QByteArray@@QAEAAV0@PBD@Z
?data@QByteArray@@QAEPADXZ
?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ
??0QChar@@QAE@D@Z
?lastIndexOf@QString@@QBEHVQChar@@HW4CaseSensitivity@Qt@@@Z
?truncate@QString@@QAEXH@Z
?addLibraryPath@QCoreApplication@@SAXABVQString@@@Z
?open@QFile@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
??0QTextStream@@QAE@PAVQIODevice@@@Z
?atEnd@QTextStream@@QBE_NXZ
?readLine@QTextStream@@QAE?AVQString@@_J@Z
??4QString@@QAEAAV0@ABV0@@Z
??1QTextStream@@UAE@XZ
??1QFile@@UAE@XZ
?ascii_helper@QString@@IBEPBDXZ
?child@QObject@@QBEPAV1@PBD0_N@Z
?row@QPersistentModelIndex@@QBEHXZ
?tr@QObject@@SA?AVQString@@PBD0@Z
?connect@QObject@@SA_NPBV1@PBD01W4ConnectionType@Qt@@@Z
?qFree@@YAXPAX@Z
?qMalloc@@YAPAXI@Z
??0QString@@QAE@XZ
?qMemSet@@YAPAXPAXHI@Z
?qRealloc@@YAPAXPAXI@Z
?malloc@QVectorData@@SAPAU1@HHHPAU1@@Z
?qWinMain@@YAXPAUHINSTANCE__@@0PADHAAHAAV?$QVector@PAD@@@Z
?exists@QFile@@SA_NABVQString@@@Z

qtgui4

?exec@QApplication@@SAHXZ
??1QApplication@@UAE@XZ
?information@QMessageBox@@SAHPAVQWidget@@ABVQString@@1111HH@Z
??1?$QList@VQItemSelectionRange@@@@QAE@XZ
?at@?$QList@VQItemSelectionRange@@@@QBEABVQItemSelectionRange@@H@Z
?selection@QItemSelectionModel@@QBE?BVQItemSelection@@XZ
?selectionModel@QAbstractItemView@@QBEPAVQItemSelectionModel@@XZ
?exec@QDialog@@QAEHXZ
?show@QWidget@@QAEXXZ
?insertItem@QListWidget@@QAEXHABVQString@@@Z
?count@QListWidget@@QBEHXZ
??0QApplication@@QAE@AAHPAPAD@Z
??1QItemSelection@@QAE@XZ

qt3support4

?q3InitNetworkProtocols@@YAXXZ
??0Q3Process@@QAE@ABVQString@@PAVQObject@@PBD@Z
??1Q3Process@@UAE@XZ
?addArgument@Q3Process@@UAEXABVQString@@@Z
?start@Q3Process@@UAE_NPAVQStringList@@@Z
?isRunning@Q3Process@@QBE_NXZ

msvcr80

__set_app_type
_controlfp_s
_invoke_watson
_except_handler4_common
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_crt_debugger_hook
_exit
_encode_pointer
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_acmdln
_ismbblead
_XcptFilter
_cexit
__getmainargs
_amsg_exit
__CxxFrameHandler3
??3@YAXPAX@Z
exit
??2@YAPAXI@Z

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 75KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3daf2a4e1852ab77d93b924798c0150c

Headers

File Characteristics

Imports

kernel32

qtcore4

qtgui4

qt3support4

msvcr80

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 75KB - Virtual size: 76KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 75KB - Virtual size: 76KB