718bd2c9db80fc76beb916561053ce117daa899108a5792cca2fdad43d9933bc

Sharing

Copy URL Twitter E-mail

General

Target

718bd2c9db80fc76beb916561053ce117daa899108a5792cca2fdad43d9933bc
Size

524KB
MD5

05d087192b8dcd016760ccc768fe8e10
SHA1

c352db97893759c6e1a448d63bef1e3dc067bf40
SHA256

718bd2c9db80fc76beb916561053ce117daa899108a5792cca2fdad43d9933bc
SHA512

843c907daec26f099d7db79a2c961f6e2fa55071151fdb9a02470d42b485a3ea7b4b20631bf56a0891aeaa0d218254becd36bfb770410db5b776f0304c374513
SSDEEP

12288:wh8L2YmG9wHROJbbINODsuTDNBc+8VVYqij:whUFwHROJINODsIBc+8Sj

Score

N/A

Malware Config

Signatures

Files

718bd2c9db80fc76beb916561053ce117daa899108a5792cca2fdad43d9933bc
.exe windows x64

b45ea26bc71ef22e5502161425923695

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

regapi

RegQueryUtilityCommandList
RegFreeUtilityCommandList

user32

LoadStringW

kernel32

RtlCaptureContext
SetUnhandledExceptionFilter
QueryPerformanceCounter
RtlLookupFunctionEntry
RtlVirtualUnwind
SetThreadUILanguage
GetConsoleOutputCP
HeapSetInformation
SearchPathW
FreeLibrary
CreateProcessW
WaitForSingleObject
GetModuleHandleW
LoadLibraryW
FormatMessageW
WriteConsoleW
MultiByteToWideChar
GetStdHandle
GetLastError
SetLastError
GetFileType
CloseHandle
GetCommandLineW
LocalAlloc
LocalFree
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
Sleep

msvcrt

_iob
wcscat_s
wcscpy_s
memmove
__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
_initterm
_amsg_exit
__setusermatherr
_commode
_fmode
_ultoa
?terminate@@YAXXZ
vswprintf_s
malloc
free
fwprintf
vfwprintf
wcschr
_wsetlocale
setlocale
_wcsnicmp
swprintf_s
__set_app_type
memset

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.vmp0
Size: 508KB - Virtual size: 1.8MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b45ea26bc71ef22e5502161425923695

Headers

DLL Characteristics

File Characteristics

Imports

regapi

user32

kernel32

msvcrt

Sections

.text Size: 11KB - Virtual size: 10KB

.data Size: 1024B - Virtual size: 6KB

.pdata Size: 512B - Virtual size: 312B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 92B

.vmp0 Size: 508KB - Virtual size: 1.8MB

.text
Size: 11KB - Virtual size: 10KB

.data
Size: 1024B - Virtual size: 6KB

.pdata
Size: 512B - Virtual size: 312B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 92B

.vmp0
Size: 508KB - Virtual size: 1.8MB