bfc9343cf5e017c66e75c9b26e2fb38104e99e9ce85aa1bd72e91f0c8c8aa12c

Sharing

Copy URL

Twitter E-mail

General

Target

bfc9343cf5e017c66e75c9b26e2fb38104e99e9ce85aa1bd72e91f0c8c8aa12c
Size

50KB
MD5

05013852db6ade18a2d695a35a1b8f00
SHA1

de315dcd78ce6f100631f387dce24febe05f2e25
SHA256

bfc9343cf5e017c66e75c9b26e2fb38104e99e9ce85aa1bd72e91f0c8c8aa12c
SHA512

ebe154c5462226c29d82c06963c7514cdc4975e058484cf0b22611d8f0b16ec45aa354745df7714e98309210a47912ecad858489fb5ccca9bf42ca93cfaa248e
SSDEEP

768:ua0ZZlkHbu9yS6UxUTO437DqyylHUgv7MW25nSLnLFENx6PhZsJmtJ:uayZly+yS6U8Z9gDMWyanI0

Score

N/A

Malware Config

Signatures

Files

bfc9343cf5e017c66e75c9b26e2fb38104e99e9ce85aa1bd72e91f0c8c8aa12c
.exe windows x86

987d0fb6e782ba125e8c7493a5967444

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
MultiByteToWideChar
GetConsoleOutputCP
GetLastError
ReadFile
LocalAlloc
HeapSetInformation
CloseHandle
GetTimeFormatW
SetThreadUILanguage
SetFilePointer
GetLocalTime
GetDateFormatW
FindNextFileW
FindClose
GetFileAttributesW
FindFirstFileW
VerifyVersionInfoW
VerSetConditionMask
LocalFree
GetCommandLineW
GetFileType
SetLastError
GetStdHandle
WriteConsoleW
FormatMessageW
LoadLibraryW
GetModuleHandleW
FreeLibrary
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetModuleHandleA
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
Sleep

msvcrt

_except_handler4_common
_controlfp
?terminate@@YAXXZ
_initterm
__setusermatherr
__p__fmode
_cexit
_exit
exit
__set_app_type
__getmainargs
_amsg_exit
__p__commode
_XcptFilter
_wsetlocale
setlocale
realloc
wcscat_s
_iob
_fileno
_vsnwprintf
_snwprintf_s
_wcslwr
memcpy
_wcsdup
wcstoul
strstr
_isatty
malloc
free
feof
wcschr
vfwprintf
fwprintf
vswprintf_s
fgets
_ultoa
wcscpy_s
_wcsnicmp
wcstol
iswdigit
memmove
memset

winsta

WinStationQueryInformationW
WinStationFreeMemory
WinStationOpenServerW
WinStationEnumerateW
WinStationSendMessageW

user32

LoadStringW

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

987d0fb6e782ba125e8c7493a5967444

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

winsta

user32

Sections

.text Size: 14KB - Virtual size: 14KB

.data Size: 512B - Virtual size: 6KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 29KB - Virtual size: 30KB

.text
Size: 14KB - Virtual size: 14KB

.data
Size: 512B - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 29KB - Virtual size: 30KB