8ccb96147d6198c9166b9619bfdc67b6f8a8e71318015e3679c6d5b9706f99a7

Sharing

Copy URL

Twitter E-mail

General

Target

8ccb96147d6198c9166b9619bfdc67b6f8a8e71318015e3679c6d5b9706f99a7
Size

404KB
MD5

eabd3a0897cd161d8ba35caea23d0556
SHA1

45216a4e48ef209fa244ec2425486db671d55530
SHA256

8ccb96147d6198c9166b9619bfdc67b6f8a8e71318015e3679c6d5b9706f99a7
SHA512

40e614c115727609b9ffc5b7ab9ec0c9f4b7162814aded05a3d817510d588ffbe58df419d493f57897df24fe4028ae2d651c21f9be25522badef1770dcbeff51
SSDEEP

6144:KhgE/69rEIaB8sa1h5kPxnrHBdoeevcQ91R1pQcy4p/FFf2qecRJA6mJOl:wgwGDLsaJkpnroeevca1jNtFFHRJoOl

Score

N/A

Malware Config

Signatures

Files

8ccb96147d6198c9166b9619bfdc67b6f8a8e71318015e3679c6d5b9706f99a7
.exe windows x86

8ecf0ec2f52fed6a1a3fa96ff1e95c91

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

isalnum
memcpy
wcstoul

ole32

HMENU_UserUnmarshal

user32

GetClassNameA
GetShellWindow
wsprintfW

urlmon

CoInternetCombineUrl

imm32

ImmDestroyContext

comdlg32

PageSetupDlgW
ChooseColorA

kernel32

DeleteTimerQueue
CreateThread
lstrlenA
GetCommandLineA
GetModuleHandleA
GetFirmwareEnvironmentVariableA
HeapWalk
SetFirmwareEnvironmentVariableA
GetTapeStatus
GetModuleFileNameA

pdh

PdhGetCounterInfoW

ntdsapi

DsFreeSpnArrayA

setupapi

SetupBackupErrorA

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 321KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

)5;pk@
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

@
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

k}cI
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

m+
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Tc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

,uCp|FbB
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WdzQo|O
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

z5O
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ecf0ec2f52fed6a1a3fa96ff1e95c91

Headers

File Characteristics

Imports

msvcrt

ole32

user32

urlmon

imm32

comdlg32

kernel32

pdh

ntdsapi

setupapi

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 56KB - Virtual size: 321KB

)5;pk@ Size: 24KB - Virtual size: 22KB

@ Size: 20KB - Virtual size: 17KB

CODE Size: 20KB - Virtual size: 19KB

k}cI Size: 32KB - Virtual size: 30KB

.crt Size: 16KB - Virtual size: 13KB

m+ Size: 84KB - Virtual size: 83KB

Tc Size: 16KB - Virtual size: 12KB

,uCp|FbB Size: 16KB - Virtual size: 13KB

WdzQo|O Size: 16KB - Virtual size: 13KB

z5O Size: 16KB - Virtual size: 13KB

.rsrc Size: 68KB - Virtual size: 64KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 56KB - Virtual size: 321KB

)5;pk@
Size: 24KB - Virtual size: 22KB

@
Size: 20KB - Virtual size: 17KB

CODE
Size: 20KB - Virtual size: 19KB

k}cI
Size: 32KB - Virtual size: 30KB

.crt
Size: 16KB - Virtual size: 13KB

m+
Size: 84KB - Virtual size: 83KB

Tc
Size: 16KB - Virtual size: 12KB

,uCp|FbB
Size: 16KB - Virtual size: 13KB

WdzQo|O
Size: 16KB - Virtual size: 13KB

z5O
Size: 16KB - Virtual size: 13KB

.rsrc
Size: 68KB - Virtual size: 64KB