993e9663f9c99d5ec4ee09dc09d493761409a5f474603a0309f3b56cb0ff1722

Sharing

Copy URL Twitter E-mail

General

Target

993e9663f9c99d5ec4ee09dc09d493761409a5f474603a0309f3b56cb0ff1722
Size

39KB
MD5

a3a14a51856a0cd07365f44435d9fb8a
SHA1

b20ef04e761f17c9272c6327c2c3b23953accdf8
SHA256

993e9663f9c99d5ec4ee09dc09d493761409a5f474603a0309f3b56cb0ff1722
SHA512

b1f4f337a083276a7795c798e6b24581b71c5cb08a7e7afc89e3f2ca3077618abc7258249911af00561d05bb80418f48a11da8e3c3df28e2436a0bbdf006e174
SSDEEP

768:3IESiR0A4wQuBgssx8InNm3+ZcQeRm/ADqSrfSmoHgvYMmevi+2:4A0eQBheInOQKulSr+AvYa6+2

Score

N/A

Malware Config

Signatures

Files

993e9663f9c99d5ec4ee09dc09d493761409a5f474603a0309f3b56cb0ff1722
.exe windows x86

986742339f4e04404c4c87cb3afd6c31

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
_XcptFilter
_exit
_c_exit
??2@YAPAXI@Z
_purecall
_except_handler3
??3@YAXPAX@Z
__CxxFrameHandler
__set_app_type
_controlfp
_cexit

atl

ord20
ord17
ord23
ord21
ord16
ord32

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetCommandLineW
GetCurrentThreadId
Sleep
CreateEventW
TerminateProcess
SetEvent
InterlockedDecrement
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
CloseHandle
HeapFree
GetProcessHeap
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
CreateThread
InterlockedIncrement

user32

DispatchMessageW
PostThreadMessageW
GetMessageW

ole32

CoSuspendClassObjects
CoUninitialize
CoResumeClassObjects
CoInitializeSecurity
CoInitializeEx
CoCreateInstanceEx

vdsutil

??1CVdsCallTracer@@QAE@XZ
??0CVdsCallTracer@@QAE@KPBD@Z
?IsLocalComputer@@YGJPAG@Z
?VdsSeTranslator@CVdsStructuredExceptionTranslator@@SGXIPAU_EXCEPTION_POINTERS@@@Z

Exports

Exports

??0CVdsStructuredExceptionTranslator@@QAE@XZ
??1CVdsDebugLog@@QAE@XZ
??1CVdsStructuredExceptionTranslator@@QAE@XZ
?TracingLogEnabled@CVdsDebugLog@@QAEHXZ

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

986742339f4e04404c4c87cb3afd6c31

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

atl

kernel32

user32

ole32

vdsutil

Exports

Exports

Sections

.text Size: 15KB - Virtual size: 15KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 22KB - Virtual size: 22KB

.text
Size: 15KB - Virtual size: 15KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 22KB - Virtual size: 22KB