b8d61517132b3fcd1f0d4bce773192f75d5da55887b6638e57f12350fff87073

Sharing

Copy URL Twitter E-mail

General

Target

b8d61517132b3fcd1f0d4bce773192f75d5da55887b6638e57f12350fff87073
Size

238KB
MD5

2b47f09ccde933b75ab34eaa7a78f3e0
SHA1

2ae1855c6b4955e3dca041d6e653fb21caafd9ba
SHA256

b8d61517132b3fcd1f0d4bce773192f75d5da55887b6638e57f12350fff87073
SHA512

0e73d7f58be1e1e1814de07ddc36ee13fce775d7229edc7ff02d352f83443ec1bd474a9db6367582e6d68994dc3ed52086d546cefdf3e20d5eb3e6bd94473a22
SSDEEP

3072:lpyNqkjkhBjVXrXWS+5wPYUJ//wPb8rV86C0wM81FoEhW5kJfvXDkY/Yj4PGK8:HyDjKVXWS+5A8PewMHNkJfPDkNcPs

Score

N/A

Malware Config

Signatures

Files

b8d61517132b3fcd1f0d4bce773192f75d5da55887b6638e57f12350fff87073
.exe windows x86

a753ab4a8985f9d5f37ce8c0e837d416

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscms

InternalSetDeviceConfig
CreateColorTransformW
DisassociateColorProfileFromDeviceA
UninstallColorProfileW
CreateProfileFromLogColorSpaceA
RegisterCMMA
CreateColorTransformA
ConvertColorNameToIndex
SetStandardColorSpaceProfileA
GetColorProfileHeader
GetColorDirectoryA
InternalGetDeviceConfig
DisassociateColorProfileFromDeviceW
InternalGetPS2ColorRenderingDictionary
UnregisterCMMW
EnumColorProfilesW
CreateMultiProfileTransform
TranslateColors
SetStandardColorSpaceProfileW
InternalGetPS2PreviewCRD
GetColorProfileElementTag
GetCMMInfo
DeleteColorTransform
CreateProfileFromLogColorSpaceW

kernel32

GetTickCount
SetCommBreak
GetExitCodeThread
SetThreadContext
SetProcessAffinityMask
GetStdHandle
SetLastError
WriteFile
GetFileAttributesA
LoadLibraryW
CreateNamedPipeA
GetUserDefaultLCID
FillConsoleOutputAttribute
GetProcessTimes
GetTempFileNameW
FillConsoleOutputCharacterA

msvcrt

__set_app_type
_execve
_strupr
_wspawnle
?set_new_handler@@YAP6AXXZP6AXXZ@Z
_ismbcalpha
iswalpha
__RTCastToVoid
_wspawnvpe
_strnicmp
_mbscpy
__getmainargs
__p__commode
_pwctype
exit

msdart

?SetDefaultSpinAdjustmentFactor@CSpinLock@@SGXN@Z
?ReadLock@CSmallSpinLock@@QAEXXZ
?sm_pfnTryEnterCriticalSection@CCriticalSection@@0P6GHPAU_RTL_CRITICAL_SECTION@@@ZA
?ReadUnlock@CSpinLock@@QAEXXZ
?FindRecord@CLKRLinearHashTable@@QBE?AW4LK_RETCODE@@PBX@Z
?ConvertSharedToExclusive@CCritSec@@QAEXXZ
?IsWin9x@CMdVersionInfo@@SAHXZ
?IsReadLocked@CReaderWriterLock@@QBE_NXZ
??4CDoubleList@@QAEAAV0@ABV0@@Z
?ReadOrWriteUnlock@CFakeLock@@QAEX_N@Z
?WriteUnlock@CLKRHashTable@@QBEXXZ

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 129KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a753ab4a8985f9d5f37ce8c0e837d416

Headers

File Characteristics

Imports

mscms

kernel32

msvcrt

msdart

Sections

.text Size: 33KB - Virtual size: 32KB

.rdata Size: 129KB - Virtual size: 128KB

.data Size: 71KB - Virtual size: 70KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 33KB - Virtual size: 32KB

.rdata
Size: 129KB - Virtual size: 128KB

.data
Size: 71KB - Virtual size: 70KB

.rsrc
Size: 3KB - Virtual size: 2KB