1f2802cecdf7ceb988e87ac239c6ae9d2c29483443592585f05231cd42dd7ee0

Sharing

Copy URL Twitter E-mail

General

Target

1f2802cecdf7ceb988e87ac239c6ae9d2c29483443592585f05231cd42dd7ee0
Size

48KB
MD5

90e128016276f067c2755ba0e314e2d0
SHA1

731619966087b6eb1b3cbffb50cab9a965b6e0be
SHA256

1f2802cecdf7ceb988e87ac239c6ae9d2c29483443592585f05231cd42dd7ee0
SHA512

f87e62b23412c0847b69a68e415c0871823485f41036844671360996872838119ac499e35e604b6a82d951a7a94c37d04dea7d51ed3628e905982c7eeb3f91c8
SSDEEP

1536:m3UIsNSY+A37feaCMJDmYsLIb4PvYqHB/AdGq:ksNSDADeak7dJHB/AdGq

Score

N/A

Malware Config

Signatures

Files

1f2802cecdf7ceb988e87ac239c6ae9d2c29483443592585f05231cd42dd7ee0
.exe windows x86

bacdbb068b6d214cb53fecd0a285c54c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetAdaptersInfo

d3d9

Direct3DCreate9

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemTimeAsFileTime
GetCurrentProcessId
GetNativeSystemInfo
GlobalMemoryStatusEx
GetVersionExA
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
InterlockedExchange

user32

GetDesktopWindow
GetMonitorInfoA
FindWindowA

msvcp80

?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

msvcr80

_XcptFilter
exit
__initenv
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_encode_pointer
__set_app_type
_crt_debugger_hook
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_decode_pointer
_except_handler4_common
_invoke_watson
_controlfp_s
_exit
memset
__getmainargs
_amsg_exit
sprintf_s
__CxxFrameHandler3
_cexit

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bacdbb068b6d214cb53fecd0a285c54c

Headers

File Characteristics

Imports

iphlpapi

d3d9

kernel32

user32

msvcp80

msvcr80

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 920B

.rsrc Size: 39KB - Virtual size: 39KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 920B

.rsrc
Size: 39KB - Virtual size: 39KB