3d7d55de685e9af0a666d169a93a36ecba22446d36fef78acfd2d3c8fd1e0bb1

Sharing

Copy URL Twitter E-mail

General

Target

3d7d55de685e9af0a666d169a93a36ecba22446d36fef78acfd2d3c8fd1e0bb1
Size

172KB
MD5

52efbec7f94b794d4fa3af7950a346c0
SHA1

328585a71a338d47206da701b0639489355cf5bd
SHA256

3d7d55de685e9af0a666d169a93a36ecba22446d36fef78acfd2d3c8fd1e0bb1
SHA512

10feee9f776304292eb197a4fd682dac1f55a1a381f99637d4d64304ddcf52b3e8fbc737673cfa7ac496be8c0a2fee30d6b6a1ebbe8ec55a5d319f51854991ec
SSDEEP

3072:2cUGhz8TAK9ymlkq7TIy07BdgygemrPiJ+ZesUUu8bn2p2U1te/:TruhIh7BlYPkVv8z2Lfe

Score

N/A

Malware Config

Signatures

Files

3d7d55de685e9af0a666d169a93a36ecba22446d36fef78acfd2d3c8fd1e0bb1
.exe windows x86

ce44431a9084c7d7d69d85b767651c5a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapWalk
TlsSetValue
PulseEvent
GetShortPathNameW
HeapAlloc
GetTempPathW
GetVersion
CreateSemaphoreW
SetCurrentDirectoryW
GetVersionExA
SetThreadPriority
SetFileAttributesW
WaitForMultipleObjectsEx
GetDateFormatA
GetThreadLocale
SetThreadExecutionState
WaitForSingleObjectEx
HeapLock
WaitForMultipleObjects
GetLastError
EnumSystemLocalesA
WriteFile
GlobalReAlloc
GetCompressedFileSizeW
TlsFree
GetThreadContext
FindResourceA
FormatMessageA
SetCurrentDirectoryA
GetFileAttributesExA
lstrcpyW
CreateMailslotW
GlobalDeleteAtom
FindResourceW
GlobalMemoryStatusEx
EnumResourceNamesA
CreateDirectoryW
GetSystemDefaultLangID
GlobalMemoryStatus
GetThreadTimes
QueryDosDeviceW
IsBadStringPtrW
SetWaitableTimer
GetStringTypeExW
IsDBCSLeadByteEx
FreeLibrary
EscapeCommFunction
GetTimeFormatW
ConnectNamedPipe
GetProfileIntW
FindResourceExA
GlobalAddAtomW
GlobalLock
EnumResourceNamesW
OpenSemaphoreW
GetNumberFormatW
WinExec
GlobalHandle
ResumeThread
GetCurrentDirectoryW
HeapCreate
WaitCommEvent
IsBadReadPtr
FreeResource
SetCommTimeouts
ReleaseSemaphore
GetNumberFormatA
SetSystemTime
GetSystemTime
lstrcmpW
TlsGetValue
MoveFileExA
LoadLibraryW
CreateFileW
GlobalCompact
AreFileApisANSI
GetExitCodeThread
LocalAlloc
GetComputerNameA
CloseHandle
RemoveDirectoryW
LoadLibraryA
SearchPathW
FindFirstChangeNotificationW
RemoveDirectoryA
FoldStringW
SetupComm
GetOverlappedResult
DeleteCriticalSection
GlobalAlloc
GetFileType
GetACP
CreateSemaphoreA
HeapFree
LockFile
RegisterWaitForSingleObject
GetSystemTimeAdjustment
VerSetConditionMask
lstrcpynW
CompareStringW
GetSystemTimeAsFileTime
SleepEx
EnterCriticalSection
FindFirstFileW
CreateEventW
GetPriorityClass
lstrcpynA
SizeofResource
CreateFileA
CreateWaitableTimerW
lstrlenW

Exports

Exports

?AightDialog@@YGEUtext@@@Z
?GoodAimTFS@@YGEUtext@@@Z
?GoodLowmFire@@YGEUtext@@@Z
?MainPort@@YGEUtext@@@Z
?NineDialog@@YGEUtext@@@Z

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.okan
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.push3
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce44431a9084c7d7d69d85b767651c5a

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 37KB - Virtual size: 37KB

.data Size: 35KB - Virtual size: 34KB

.okan Size: 16KB - Virtual size: 16KB

.push3 Size: 16KB - Virtual size: 16KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 37KB - Virtual size: 37KB

.data
Size: 35KB - Virtual size: 34KB

.okan
Size: 16KB - Virtual size: 16KB

.push3
Size: 16KB - Virtual size: 16KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 2KB - Virtual size: 1KB