b7d4776fcaaa61a76410d010a415bb91bdfcbf8cc480aed721da4ce65184ae70

Sharing

Copy URL

Twitter E-mail

General

Target

b7d4776fcaaa61a76410d010a415bb91bdfcbf8cc480aed721da4ce65184ae70
Size

209KB
MD5

51cbede0aad7e723a047951c7b770506
SHA1

b37d6f4b689a6a3e327d01f53ec13d003a6f6cfe
SHA256

b7d4776fcaaa61a76410d010a415bb91bdfcbf8cc480aed721da4ce65184ae70
SHA512

88f9199d44f089b1806374cd5b1e9378407677e4d8680b7304f84e12be5e826eb12e3c9899749b7e6c519507a14cb5f0da9b6af52ff75c72bb80653bda5e5581
SSDEEP

6144:Jbm1BTU5qBZoaHb27IWUDdNl1GsRgMCZb1nGyruXPBX5fQ:JTmb72MNDvl1cMSo6uXPQ

Score

N/A

Malware Config

Signatures

Files

b7d4776fcaaa61a76410d010a415bb91bdfcbf8cc480aed721da4ce65184ae70
.exe windows x86

f1ab71e0f8e588c3f40832c93a4f95a9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

BeginUpdateResourceA
CloseHandle
CreateFileA
DeleteCriticalSection
EndUpdateResourceW
EnterCriticalSection
ExitProcess
GetACP
GetCPInfo
GetCommandLineA
GetCurrentThreadId
GetEnvironmentStrings
GetFileType
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetVersion
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapFree
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
OpenJobObjectA
RaiseException
ReleaseSemaphore
RtlUnwind
SetCommState
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
SetLastError
SetTapeParameters
SleepEx
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFileEx
UnregisterWaitEx
VirtualAlloc
VirtualFree
VirtualQuery
WriteConsoleInputA
WriteFile
GetVolumeInformationA

gdi32

AbortPath
AddFontMemResourceEx
ArcTo
CopyMetaFileA
CreateColorSpaceA
CreateColorSpaceW
CreateCompatibleBitmap
CreateDIBSection

user32

DrawIconEx
EnumThreadWindows
GetDC
GetDialogBaseUnits
GetWindowContextHelpId
MessageBoxA
MsgWaitForMultipleObjectsEx
wsprintfA

Exports

Exports

__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 153KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1ab71e0f8e588c3f40832c93a4f95a9

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Exports

Exports

Sections

.text Size: 35KB - Virtual size: 36KB

.data Size: 12KB - Virtual size: 28KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 153KB - Virtual size: 153KB

.reloc Size: 2KB - Virtual size: 4KB

.text
Size: 35KB - Virtual size: 36KB

.data
Size: 12KB - Virtual size: 28KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 153KB - Virtual size: 153KB

.reloc
Size: 2KB - Virtual size: 4KB