8fb6e94a5ba5de49019cd665d51e2e89e763117fea422985c543a1bbca3a4b7f

Sharing

Copy URL Twitter E-mail

General

Target

8fb6e94a5ba5de49019cd665d51e2e89e763117fea422985c543a1bbca3a4b7f
Size

172KB
MD5

386754587ead2a9c476851c516c25f70
SHA1

796818391d5452fe6e7aab9a16a0b7ce199872c5
SHA256

8fb6e94a5ba5de49019cd665d51e2e89e763117fea422985c543a1bbca3a4b7f
SHA512

ae8609971348e2e8a0bebe857d4dc9f6c0f56d0c684b13f344c953dd53cfec59d6d02fed22a5e5f0443b04ce3f427e85144dfe05ce4d1739c4b0995d0b2c5900
SSDEEP

1536:xk46QJFzfxqLBf5Gi2FUKm4Vu15rWkFKOUWGMGzokxlL7l1:xvjzpqLqtFLuP9X0okxlL7

Score

N/A

Malware Config

Signatures

Files

8fb6e94a5ba5de49019cd665d51e2e89e763117fea422985c543a1bbca3a4b7f
.exe windows x86

5407ce98801763ee851df43d77814349

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CreateFileA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FlushConsoleInputBuffer
GetACP
GetCPInfo
GetCommandLineA
GetConsoleMode
GetConsoleScreenBufferInfo
GetCurrentThreadId
GetEnvironmentStrings
GetFileType
GetLargestConsoleWindowSize
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetNumberOfConsoleInputEvents
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetVersion
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapFree
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
RaiseException
ReadConsoleInputA
RtlUnwind
SetConsoleCtrlHandler
SetConsoleMode
SetConsoleScreenBufferSize
SetConsoleWindowInfo
SetFilePointer
SetHandleCount
SetLastError
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WideCharToMultiByte
WriteConsoleInputA
WriteFile

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoW
VerFindFileW
VerQueryValueW

gdi32

AddFontMemResourceEx
AddFontResourceA
AddFontResourceExW
CreateBrushIndirect
CreateDIBPatternBrushPt

user32

EnumThreadWindows
MessageBoxA
wsprintfA

urlmon

CoInternetCreateSecurityManager
URLOpenBlockingStreamA
UrlMkGetSessionOption

Exports

Exports

__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 14KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 76KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5407ce98801763ee851df43d77814349

Headers

File Characteristics

Imports

kernel32

version

gdi32

user32

urlmon

Exports

Exports

Sections

.text Size: 41KB - Virtual size: 44KB

.data Size: 14KB - Virtual size: 32KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 35KB - Virtual size: 34KB

.reloc Size: 76KB - Virtual size: 148KB

.text
Size: 41KB - Virtual size: 44KB

.data
Size: 14KB - Virtual size: 32KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 35KB - Virtual size: 34KB

.reloc
Size: 76KB - Virtual size: 148KB