aca8bd0d2c40b452ca90cac370573008ced391494d72ed5bb01f199db096253b

Sharing

Copy URL Twitter E-mail

General

Target

aca8bd0d2c40b452ca90cac370573008ced391494d72ed5bb01f199db096253b
Size

275KB
MD5

141b4da66b57eb6174e8d9bee5e8253b
SHA1

9b8b6763d3207f2dbe8a4b71b9d101f6fab18c38
SHA256

aca8bd0d2c40b452ca90cac370573008ced391494d72ed5bb01f199db096253b
SHA512

1d6fb28451c35d8e06705af2a13907592286fdb9e9d7e61e33491fdb9ae1eb3d1a2e053b3682e089aaae50be0f683dfe4dfe412fda162a386f8c7cb2941ce536
SSDEEP

6144:kN482l5uYLmhhRWA8AJf4mUJ+ImwbUAjh0+LzD8:kN482347qygcwbH10q8

Score

N/A

Malware Config

Signatures

Files

aca8bd0d2c40b452ca90cac370573008ced391494d72ed5bb01f199db096253b
.exe windows x86

8a2a6b0bf52c57826ead43c33fbc0590

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
ExitProcess
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
GetOEMCP
GetACP
GetCPInfo
WriteFile
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
HeapReAlloc
VirtualAlloc
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapAlloc
LCMapStringW

user32

FindWindowA
LoadBitmapW

oleaut32

SafeArrayGetLBound
VarFix
VarImp
VarBoolFromDate
SafeArrayAccessData
VarDateFromDec
VarDecFromDate
CreateStdDispatch
VectorFromBstr
RevokeActiveObject
VarBstrFromDisp
VarOr
VarDecFix
VarDiv
VarXor
VarFormatNumber
VarFormatFromTokens
VariantCopy
SafeArrayDestroy
DispInvoke
VarPow
VarEqv
BstrFromVector
SafeArrayDestroyDescriptor
GetErrorInfo
SafeArrayCopy
VarFormatDateTime
VarIdiv
VariantClear
VarMul
CreateTypeLib2
VarDecRound
VarNot
VarFormatPercent
SafeArrayGetElement
VarBoolFromDisp
SafeArrayLock
VariantChangeType
VarNumFromParseNum
LoadTypeLibEx
SafeArrayAllocDescriptor
VarDecCmp
VarBstrFromDate
SafeArrayDestroyData
VarWeekdayName
VarDecMul
SafeArrayGetIID

Sections

.text
Size: 209KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a2a6b0bf52c57826ead43c33fbc0590

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

oleaut32

Sections

.text Size: 209KB - Virtual size: 208KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 60KB - Virtual size: 61KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 209KB - Virtual size: 208KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 60KB - Virtual size: 61KB

.rsrc
Size: 2KB - Virtual size: 2KB