88bb080f42a5c4e8ad8e9aa8568b45f509da6330508b8162a5ab8de3d331630c

Sharing

Copy URL Twitter E-mail

General

Target

88bb080f42a5c4e8ad8e9aa8568b45f509da6330508b8162a5ab8de3d331630c
Size

328KB
MD5

4322b3ece8bf6fc9ff96e11b93126a30
SHA1

96e62af87c74896060caab69f32ffa5f505aa460
SHA256

88bb080f42a5c4e8ad8e9aa8568b45f509da6330508b8162a5ab8de3d331630c
SHA512

bf165660a675c6ec1e6d8151d3302e2559f5934face0715b96b9890eebb88be4c5147398e419ee99fdcf8072c0f17ff87312884a189ab18a92e4df284caa081a
SSDEEP

6144:28tU0cDnITeJDZzKhrMECRVdQsMbi9cDaVMldPlvI28+iQpdwrCk:GXISZqArK4+kqDr0Uwm

Score

N/A

Malware Config

Signatures

Files

88bb080f42a5c4e8ad8e9aa8568b45f509da6330508b8162a5ab8de3d331630c
.exe windows x86

ec42a0a00cff98277cb7102e9da65a34

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr90

__set_app_type
_crt_debugger_hook
?terminate@@YAXXZ
_unlock
_encode_pointer
_lock
_onexit
_decode_pointer
_except_handler4_common
_invoke_watson
_controlfp_s
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
??2@YAPAXI@Z
__dllonexit
??3@YAXPAX@Z
memcpy
__CxxFrameHandler3
memset

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
InterlockedCompareExchange
Sleep
InterlockedExchange
VirtualProtect
LoadLibraryA
GetProcAddress
GetSystemTimeAsFileTime

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 292KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

igamiX
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ec42a0a00cff98277cb7102e9da65a34

Headers

DLL Characteristics

File Characteristics

Imports

msvcr90

kernel32

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 292KB - Virtual size: 292KB

igamiX Size: 4KB - Virtual size: 4KB

.aspack Size: 8KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

.aspack Size: 7KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 292KB - Virtual size: 292KB

igamiX
Size: 4KB - Virtual size: 4KB

.aspack
Size: 8KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB

.aspack
Size: 7KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB