37e78b3a46187e260949de39dc06c8ab1c0226cbc5f32108c3838f738629dd5c

Sharing

Copy URL Twitter E-mail

General

Target

37e78b3a46187e260949de39dc06c8ab1c0226cbc5f32108c3838f738629dd5c
Size

704KB
MD5

9639afa6177ddaf38d04eb14d5be9860
SHA1

34813a21c92378816a226d432656af94eab5b13f
SHA256

37e78b3a46187e260949de39dc06c8ab1c0226cbc5f32108c3838f738629dd5c
SHA512

aaf26768a0a43ea91b1d9dc17f1ee683a62f533d349c4b63f44bcf45a3456a78ae858bd4c323b9364897abb724d206770d84df71492beae2bf69c8964cd1377e
SSDEEP

3072:sz9qMcOpTM/24TOeaxXNJiGglJcoC0oKF1frIGp9HaYPgfTJraGA33:Q9y7+UOeaxXelKSZp9HaRVGF33

Score

N/A

Malware Config

Signatures

Files

37e78b3a46187e260949de39dc06c8ab1c0226cbc5f32108c3838f738629dd5c
.exe windows x86

d42c8be32ee2844f463c2f467d86e2c2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateThread
GetConsoleScreenBufferInfo
GetCurrentProcess
GetProcessHeap
GetVersionExW
GlobalMemoryStatusEx
InterlockedCompareExchange
InterlockedDecrement
Process32Next
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
WaitForSingleObject
VirtualAlloc
InterlockedExchange
LocalAlloc
LocalFree
Sleep
GetCurrentDirectoryA
GetLastError
SetCurrentDirectoryA
GetDriveTypeA
GetFullPathNameA
WideCharToMultiByte
GetTimeZoneInformation
GetModuleHandleW
GetProcAddress
ExitProcess
InterlockedIncrement
HeapFree
GetCommandLineA
GetStartupInfoA
HeapAlloc
RaiseException
DeleteCriticalSection
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
IsDebuggerPresent
GetFileType
CreateFileA
RtlUnwind
GetCPInfo
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
GetCurrentThread
WriteFile
GetStdHandle
GetModuleFileNameA
SetConsoleCtrlHandler
FreeLibrary
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetTimeFormatA
GetDateFormatA
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetModuleHandleA
HeapCreate
HeapDestroy
VirtualFree
HeapReAlloc
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
LCMapStringA
LCMapStringW
SetStdHandle
GetConsoleCP
GetConsoleMode
SetFilePointer
SetEndOfFile
ReadFile
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetExitCodeProcess
CreateProcessA
GetFileAttributesA
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA

ole32

CLIPFORMAT_UserSize
CoCreateInstance
CoInitializeSecurity
CoSetProxyBlanket
CoTestCancel
CoUninitialize
FmtIdToPropStgName
OleLoad
StgCreateStorageEx

Sections

.text
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 410KB - Virtual size: 422KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d42c8be32ee2844f463c2f467d86e2c2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

Sections

.text Size: 169KB - Virtual size: 169KB

.rdata Size: 121KB - Virtual size: 120KB

.data Size: 410KB - Virtual size: 422KB

.text
Size: 169KB - Virtual size: 169KB

.rdata
Size: 121KB - Virtual size: 120KB

.data
Size: 410KB - Virtual size: 422KB