db7e7be14c489d0f14d78f68eb45a81ad079300c8a3fcd8d25944e34fdaea361

Sharing

Copy URL

Twitter E-mail

General

Target

db7e7be14c489d0f14d78f68eb45a81ad079300c8a3fcd8d25944e34fdaea361
Size

221KB
MD5

9d5c40419605aae0ee226321fb0b4abf
SHA1

94d58e26f013d141e163359e5c1c796f43e1a271
SHA256

db7e7be14c489d0f14d78f68eb45a81ad079300c8a3fcd8d25944e34fdaea361
SHA512

5e68e3e1fa5ceaedef95df4b6c1596b7a0c6f51ae8044866d9e5d5b2d6832701e1284a4ac21b5316475b2eed8f3901e7403df707b289d5b15f520dcb251ff0c5
SSDEEP

6144:bwe+bS6+kRdwcDrSWao9EOU60sgBQa3shiJG74P:bwe1QdpDrSWao9EOUpsgHjE4

Score

N/A

Malware Config

Signatures

Files

db7e7be14c489d0f14d78f68eb45a81ad079300c8a3fcd8d25944e34fdaea361
.exe windows x86

868600f18b7bd64d3d3e4ae2b03eb567

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__CxxFrameHandler
__p__commode
__p__fmode
__set_app_type
__dllonexit
_onexit
??1type_info@@UAE@XZ
_mbscmp
_mbsicmp
_mbslwr
_controlfp
memmove
??8type_info@@QBEHABV0@@Z
__RTtypeid
_itoa
putc
fputc
vfprintf
fprintf
_iob
_strcmpi
printf
strtol
_dup2
freopen
sscanf
realloc
_except_handler3
?terminate@@YAXXZ
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__initenv
_cexit
_XcptFilter
_exit
_c_exit
free
_CxxThrowException
malloc
fopen
fclose
_purecall
fputs
exit
getc
_stricmp
sprintf
wcslen
wcscpy
wcscat
mbstowcs
wcstombs

msvcirt

?str@ostrstream@@QAEPADXZ
??6ostream@@QAEAAV0@K@Z
??0ostrstream@@QAE@XZ
?get@istream@@QAEAAV1@PADHD@Z
?cin@@3Vistream_withassign@@A
?flush@@YAAAVostream@@AAV1@@Z
??6ostream@@QAEAAV0@J@Z
??1ostrstream@@UAE@XZ
?endl@@YAAAVostream@@AAV1@@Z
?cerr@@3Vostream_withassign@@A
??6ostream@@QAEAAV0@PBD@Z
??6ostream@@QAEAAV0@P6AAAV0@AAV0@@Z@Z
??6ostream@@QAEAAV0@D@Z
?fd@ifstream@@QBEHXZ
??6ostream@@QAEAAV0@H@Z
??_Dstrstream@@QAEXXZ
??_Dostrstream@@QAEXXZ
??0strstream@@QAE@XZ
?ends@@YAAAVostream@@AAV1@@Z
?str@strstream@@QAEPADXZ
??1strstream@@UAE@XZ
??1ios@@UAE@XZ
?cout@@3Vostream_withassign@@A

kernel32

GetFullPathNameA
InterlockedIncrement
CloseHandle
WideCharToMultiByte
InterlockedDecrement
CreateFileA
FindClose
FindNextFileA
FindFirstFileA
GetLocalTime
SetCurrentDirectoryA
GetCurrentDirectoryA
GetComputerNameA
lstrlenA
LoadLibraryA
FreeLibrary
GetModuleHandleA

oleaut32

VariantClear
SysAllocString
SysFreeString
SafeArrayPutElement
SafeArrayCreate
VariantInit

ole32

CoInitialize
CoCreateInstance
CoUninitialize

user32

LoadStringA

advapi32

RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegSetValueExA
GetUserNameA
RegCloseKey

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.text
Size: 201KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

868600f18b7bd64d3d3e4ae2b03eb567

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

msvcirt

kernel32

oleaut32

ole32

user32

advapi32

version

Sections

.text Size: 201KB - Virtual size: 200KB

.data Size: 18KB - Virtual size: 17KB

.rsrc Size: 1024B - Virtual size: 1000B

.text
Size: 201KB - Virtual size: 200KB

.data
Size: 18KB - Virtual size: 17KB

.rsrc
Size: 1024B - Virtual size: 1000B