58f637ca0ce38a97f31ca2821dfcb80ac45905ec469fa72bd2f2d635da1e618a

Sharing

Copy URL

Twitter E-mail

General

Target

58f637ca0ce38a97f31ca2821dfcb80ac45905ec469fa72bd2f2d635da1e618a
Size

158KB
MD5

91b06298af4fce27cd8310dd06d8b351
SHA1

a281062784f8cff691b4a85085af1236885ab3ee
SHA256

58f637ca0ce38a97f31ca2821dfcb80ac45905ec469fa72bd2f2d635da1e618a
SHA512

d709e97c9e5539805567a288a8e8a4177aac56644f1eaf88554cd5799af756dcc0025447c0fccfda806a332e4f39a3cc8c29e8c7d902b994afb8c76c650219f7
SSDEEP

1536:Aj4Hq4rJZa6jJXUedPkPcsLxi6VL33uKdTicTuEoldsO56xVH4aFYZr22T5KDtw2:a4zZpjJEuMxF3VL3RnLoixmq87ADtVH

Score

N/A

Malware Config

Signatures

Files

58f637ca0ce38a97f31ca2821dfcb80ac45905ec469fa72bd2f2d635da1e618a
.exe windows x86

d475c81626069997606ae49c2bb0c623

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__initenv
exit
_cexit
_XcptFilter
_exit
_c_exit
isdigit
isprint
iscntrl
memmove
atoi
tolower
strtol
_snprintf
strchr
_strupr
sprintf
_dup
_errno
_close
_iob
_isatty
_setmode
_write
_open
malloc
free
_read

kernel32

SetConsoleScreenBufferSize
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetSystemDirectoryW
lstrcatW
LoadLibraryExW
GetProcAddress
CreateProcessW
SetConsoleTitleA
WriteConsoleOutputA
ReadConsoleOutputA
WriteConsoleA
SetConsoleTextAttribute
ScrollConsoleScreenBufferA
WriteFile
FillConsoleOutputCharacterA
FillConsoleOutputAttribute
GetCommState
SetConsoleCursorPosition
SetCommMask
WaitCommEvent
ReadFile
ClearCommError
WaitForMultipleObjects
InterlockedDecrement
ResumeThread
InterlockedIncrement
SuspendThread
IsDBCSLeadByteEx
GetConsoleScreenBufferInfo
SetConsoleWindowInfo
DeviceIoControl
GetOverlappedResult
SetCommBreak
SetEvent
LocalFree
FormatMessageA
GetLastError
ReadConsoleInputA
Sleep
ExitProcess
SetCommState
CloseHandle
SetThreadPriority
CreateThread
GetCurrentDirectoryA
GetCurrentDirectoryW
GetUserDefaultLangID
ResetEvent
WaitForSingleObject
GetCommModemStatus
GetConsoleCP
SetConsoleCtrlHandler
ExitThread
GetCurrentThread
CreateEventA
SetConsoleMode
GetConsoleMode
CreateFileA
GetCurrentProcessId
ClearCommBreak

ntdll

NtOpenKey
RtlInitUnicodeString
NtClose
RtlUnicodeStringToAnsiString
NtQueryValueKey
NtRequestPort
RtlLeaveCriticalSection
NtMapViewOfSection
RtlAnsiStringToUnicodeString
RtlFreeUnicodeString
NtCreateSection
RtlInitAnsiString
RtlSetDaclSecurityDescriptor
RtlCreateSecurityDescriptor
NtRequestWaitReplyPort
NtCreatePort
NtCompleteConnectPort
NtAcceptConnectPort
RtlFreeHeap
RtlDosPathNameToNtPathName_U
NtReplyPort
NtReplyWaitReceivePort
RtlCharToInteger
NtQuerySystemTime
RtlInitializeCriticalSection
RtlEnterCriticalSection
NtSetInformationObject
NtQueryObject
RtlAddAccessAllowedAce
RtlCreateAcl
RtlLengthSid
RtlAllocateAndInitializeSid
NtConnectPort
NtQueryInformationProcess

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 106KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d475c81626069997606ae49c2bb0c623

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

ntdll

Sections

.text Size: 45KB - Virtual size: 45KB

.data Size: 1024B - Virtual size: 260KB

.rsrc Size: 4KB - Virtual size: 4KB

.text Size: 106KB - Virtual size: 108KB

.text
Size: 45KB - Virtual size: 45KB

.data
Size: 1024B - Virtual size: 260KB

.rsrc
Size: 4KB - Virtual size: 4KB

.text
Size: 106KB - Virtual size: 108KB