aca73acf92d5c709d17919f0d61f0db64bd50098fe2afe9e5834394dbaa611ae

Sharing

Copy URL

Twitter E-mail

General

Target

aca73acf92d5c709d17919f0d61f0db64bd50098fe2afe9e5834394dbaa611ae
Size

428KB
MD5

85b8d2fa326926f049d7d3b7a083e08e
SHA1

9884d2f5bce7405627495470893765a70f858242
SHA256

aca73acf92d5c709d17919f0d61f0db64bd50098fe2afe9e5834394dbaa611ae
SHA512

89d5b627a708974439e31079d122395c7e9ee06b345e2efa81e38a2821ceded0a1e95f919dcf44dce1dc509eeabae77264b8fadbe151408f63408c8b199090d7
SSDEEP

6144:1Tz+ZXamW2jpJuSTZBDdDgPME1m4SKlwIMvfAoXbftChXW3AxfulDGgB:Nz+YmJJuGZYbzz2IgfFblCJxfS6

Score

N/A

Malware Config

Signatures

Files

aca73acf92d5c709d17919f0d61f0db64bd50098fe2afe9e5834394dbaa611ae
.exe windows x86

85f1712b277344e638a110887ff00d32

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleFileNameA
GetFirmwareEnvironmentVariableA
DeleteTimerQueue
GetTapeStatus
GlobalMemoryStatusEx
HeapWalk
SetFilePointerEx
SetFirmwareEnvironmentVariableA
CreateThread

comdlg32

ChooseColorA
PageSetupDlgW

clusapi

OpenCluster

urlmon

CoInternetCombineUrl

imm32

ImmDestroyContext

pdh

PdhGetCounterInfoW

user32

wsprintfW

ntdsapi

DsFreeSpnArrayA

msvcrt

wcstoul
isalnum
memcpy

ole32

HMENU_UserUnmarshal

setupapi

SetupBackupErrorA

oleaut32

VarCyFromI1

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

ordo
Size: 4KB - Virtual size: 849B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.t
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mrt1
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

85f1712b277344e638a110887ff00d32

Headers

File Characteristics

Imports

kernel32

comdlg32

clusapi

urlmon

imm32

pdh

user32

ntdsapi

msvcrt

ole32

setupapi

oleaut32

Sections

.text Size: 16KB - Virtual size: 12KB

ordo Size: 4KB - Virtual size: 849B

.t Size: 4KB - Virtual size: 46B

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 100KB - Virtual size: 368KB

.mrt1 Size: 100KB - Virtual size: 97KB

CODE Size: 100KB - Virtual size: 97KB

.rsrc Size: 96KB - Virtual size: 94KB

.text
Size: 16KB - Virtual size: 12KB

ordo
Size: 4KB - Virtual size: 849B

.t
Size: 4KB - Virtual size: 46B

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 100KB - Virtual size: 368KB

.mrt1
Size: 100KB - Virtual size: 97KB

CODE
Size: 100KB - Virtual size: 97KB

.rsrc
Size: 96KB - Virtual size: 94KB