5aa910836647e4269d07a941e55a9d49e062a5e4d11d3ca7bc484becb060df31

Sharing

Copy URL

Twitter E-mail

General

Target

5aa910836647e4269d07a941e55a9d49e062a5e4d11d3ca7bc484becb060df31
Size

712KB
MD5

10b76e00447de8448db3152610c982d0
SHA1

410569f2d841b62c4d6c8ab661be721153dc1566
SHA256

5aa910836647e4269d07a941e55a9d49e062a5e4d11d3ca7bc484becb060df31
SHA512

12d171a46b62ae1a38d11d353ef26184e419a9d8933d5cc076f4edfd657e86607a168008e27aab55a5a1bd73886ec070349b25348a22caa79a359f6b7b9afe5c
SSDEEP

12288:i+9hQrBltEpdDYUTIBO7+i9s3FjaKIcAxRWO/0qWPgI7v+5tWCOiUV5:i+TuWKslrKIzZqPgIb+DWniUV

Score

N/A

Malware Config

Signatures

Files

5aa910836647e4269d07a941e55a9d49e062a5e4d11d3ca7bc484becb060df31
.exe windows x86

595e6eb9de1797dee5b1f614f4cd3695

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAConnect
WSAGetOverlappedResult
WSASocketW
WSAStartup
WSACleanup

mscms

CreateDeviceLinkProfile
SetStandardColorSpaceProfileW
UninstallColorProfileW
GetColorDirectoryW
IsColorProfileTagPresent
SetColorProfileHeader
SetColorProfileElementReference
ConvertColorNameToIndex
DisassociateColorProfileFromDeviceW
InstallColorProfileW
AssociateColorProfileWithDeviceW
OpenColorProfileW
GetColorProfileHeader
GetColorProfileElement
TranslateColors
GetCMMInfo
ConvertIndexToColorName
GetPS2ColorRenderingDictionary
GetPS2ColorSpaceArray
EnumColorProfilesW
CreateProfileFromLogColorSpaceW
SelectCMM
RegisterCMMW
DeleteColorTransform
CreateMultiProfileTransform
GetColorProfileFromHandle
GetCountColorProfileElements
SetColorProfileElementSize
GetPS2ColorRenderingIntent
GetNamedProfileInfo
TranslateBitmapBits
CreateColorTransformW
IsColorProfileValid
CheckBitmapBits
GetStandardColorSpaceProfileW
CloseColorProfile
UnregisterCMMW
GetColorProfileElementTag
SetColorProfileElement
CheckColors

kernel32

RaiseException
LCMapStringW
WideCharToMultiByte
LCMapStringA
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
InitializeCriticalSection
LoadLibraryA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
HeapSize
Sleep
HeapReAlloc
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleHandleW
GetVersionExW
GetSystemTime
QueryPerformanceCounter
GetVolumeInformationW
GetProcAddress
GetNativeSystemInfo
SetSystemTimeAdjustment
GetDateFormatW
OpenProcess
CreateFileW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoW
RtlUnwind
GetLastError
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings

Sections

.text
Size: 480KB - Virtual size: 480KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 154KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

595e6eb9de1797dee5b1f614f4cd3695

Headers

File Characteristics

Imports

ws2_32

mscms

kernel32

Sections

.text Size: 480KB - Virtual size: 480KB

.rdata Size: 154KB - Virtual size: 153KB

.data Size: 75KB - Virtual size: 108KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 480KB - Virtual size: 480KB

.rdata
Size: 154KB - Virtual size: 153KB

.data
Size: 75KB - Virtual size: 108KB

.rsrc
Size: 2KB - Virtual size: 1KB