e01e2ac08f9e7371f9d69f4bb380200683b6905654e8407332d29a56f3c97d09

Sharing

Copy URL Twitter E-mail

General

Target

e01e2ac08f9e7371f9d69f4bb380200683b6905654e8407332d29a56f3c97d09
Size

353KB
MD5

073f117d8235cbb4447e39f110e0ad27
SHA1

bab239c78954471befb75468e24271f2cea67a70
SHA256

e01e2ac08f9e7371f9d69f4bb380200683b6905654e8407332d29a56f3c97d09
SHA512

8a29f1ca86fa420af8eda51b365de2f93df0de5319030c40bbbaf2907381d605865c9679cfa042f76293606d2db0433669591dfafb4398a55ad505f436486603
SSDEEP

6144:H2VMhJD7/VxfkI40JfN1eH1vB6cQ7isa3Y1GTS9P08xqy4X5z5w:SMhJDxxfHz7eH1v4c6/QYMTwM5f5w

Score

N/A

Malware Config

Signatures

Files

e01e2ac08f9e7371f9d69f4bb380200683b6905654e8407332d29a56f3c97d09
.exe windows x86

a5e215da6c9c92ca73f78998c14b2122

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscms

AssociateColorProfileWithDeviceW
CheckBitmapBits
CheckColors
CloseColorProfile
CreateDeviceLinkProfile
CreateMultiProfileTransform
CreateProfileFromLogColorSpaceW
DeleteColorTransform
GetColorProfileElement
GetColorProfileElementTag
GetColorProfileFromHandle
GetNamedProfileInfo
GetPS2ColorRenderingDictionary
GetPS2ColorRenderingIntent
GetPS2ColorSpaceArray
GetStandardColorSpaceProfileW
InstallColorProfileW
IsColorProfileTagPresent
SetColorProfileHeader
SetStandardColorSpaceProfileW
TranslateBitmapBits
TranslateColors
UninstallColorProfileW
UnregisterCMMW

kernel32

GetFileType
GetOEMCP
GetACP
GetCPInfo
GetLocaleInfoA
LCMapStringW
WideCharToMultiByte
LCMapStringA
SetEndOfFile
ReadFile
GetStringTypeW
GetStringTypeA
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
InterlockedExchange
RtlUnwind
LoadLibraryA
CreateFileA
VirtualQuery
GetSystemInfo
SetStdHandle
ExpandEnvironmentStringsW
IsProcessorFeaturePresent
VirtualProtect
HeapReAlloc
HeapAlloc
HeapFree
GetModuleHandleA
GetStartupInfoW
GetVersionExA
GetLastError
WriteFile
FlushFileBuffers
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetStartupInfoA
CloseHandle
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetModuleFileNameA
UnhandledExceptionFilter
GetModuleFileNameW
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetFilePointer

Exports

Exports

Busysince
Kinggave

Sections

.text
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 71KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.5rdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a5e215da6c9c92ca73f78998c14b2122

Headers

File Characteristics

Imports

mscms

kernel32

Exports

Exports

Sections

.text Size: 164KB - Virtual size: 164KB

.rdata Size: 54KB - Virtual size: 54KB

.data Size: 71KB - Virtual size: 302KB

.rsrc Size: 1KB - Virtual size: 1KB

.5rdata Size: 60KB - Virtual size: 60KB

.text
Size: 164KB - Virtual size: 164KB

.rdata
Size: 54KB - Virtual size: 54KB

.data
Size: 71KB - Virtual size: 302KB

.rsrc
Size: 1KB - Virtual size: 1KB

.5rdata
Size: 60KB - Virtual size: 60KB