849fb3899cbc7f38ad71fadb095130e0803cf02f05e62f0e81f2e3ffcea8ac18

Sharing

Copy URL Twitter E-mail

General

Target

849fb3899cbc7f38ad71fadb095130e0803cf02f05e62f0e81f2e3ffcea8ac18
Size

252KB
MD5

48c79cb0257647acca948eb04e09513c
SHA1

2d34b92d4a0ce5d28291d375e001381335142952
SHA256

849fb3899cbc7f38ad71fadb095130e0803cf02f05e62f0e81f2e3ffcea8ac18
SHA512

7851d8b8ee5a20dcb06e387791ae8295ecad8aee3281a5c039817361efd06f98556f6777eb874a4c0f876154b2832a5855a316a970a17ea6f6551d5c64065fb2
SSDEEP

6144:25ua+IVfPfePYTC9UXmP29O19fhXdKNyVEhO6GNEVWJQkFA:NBR9UWP2obhpVMOvS

Score

N/A

Malware Config

Signatures

Files

849fb3899cbc7f38ad71fadb095130e0803cf02f05e62f0e81f2e3ffcea8ac18
.exe windows x86

0c45f3b0f2ac80f582cbe69fcb1ea23f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetProcAddress
GetModuleHandleW
CloseHandle
Sleep
GetLastError
CreateFileA
GetCurrentProcessId
FileTimeToDosDateTime
FileTimeToLocalFileTime
GetFileAttributesExA
SetFileAttributesA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetModuleHandleA
SetUnhandledExceptionFilter
InterlockedCompareExchange
InterlockedExchange
UnhandledExceptionFilter

msvcrt

_open_osfhandle
ctime
time
_read
_write
_close
_lseek
remove
_strnicmp
_eof
_open
fclose
fprintf
fopen
_ftol2_sse
clock
atoi
setvbuf
_iob
_vsnprintf
_stat
_unlink
_errno
_mkdir
_tempnam
fwrite
fread
ferror
feof
tolower
__getmainargs
_cexit
_exit
_XcptFilter
_initterm
_amsg_exit
__setusermatherr
__p__commode
__p__fmode
__set_app_type
?terminate@@YAXXZ
_except_handler4_common
_controlfp
_ltoa_s
memset
isdigit
toupper
__doserrno
atol
strchr
strncmp
strspn
_stricmp
memcpy
strpbrk
printf
malloc
_strdup
free
exit
memmove

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

user32

CharNextExA

Sections

.text
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

PACK
Size: 160KB - Virtual size: 416KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0c45f3b0f2ac80f582cbe69fcb1ea23f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

version

user32

Sections

.text Size: 82KB - Virtual size: 82KB

.data Size: 3KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 3KB

PACK Size: 160KB - Virtual size: 416KB

.text
Size: 82KB - Virtual size: 82KB

.data
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB

PACK
Size: 160KB - Virtual size: 416KB