e9878d94bc21063c39a80a5ce90e769de5ec92dd2cc888d8775b1662396dbd1a

Sharing

Copy URL

Twitter E-mail

General

Target

e9878d94bc21063c39a80a5ce90e769de5ec92dd2cc888d8775b1662396dbd1a
Size

653KB
MD5

f286cbf1ac8911808008bf3419a0f307
SHA1

5dbf23bf89bebd846f7ce1df2abfa3098717804a
SHA256

e9878d94bc21063c39a80a5ce90e769de5ec92dd2cc888d8775b1662396dbd1a
SHA512

4fcf7d3b9974df504db5e701655c5384db2b3f2182cb0664a2f32f726522e71b3db0234ecd47e0f051e308131eb62ee72bd2fdef10f4601a0086c0465a9e16dc
SSDEEP

12288:HhBk5VkHzSa8+EVTS7WPFmIeh7itt+ErJycQEn5bV:HhjTSsEEqPRHTrJycvnlV

Score

N/A

Malware Config

Signatures

Files

e9878d94bc21063c39a80a5ce90e769de5ec92dd2cc888d8775b1662396dbd1a
.exe windows x86

de695632ca4601a8a471751adf4c8ff3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToDosDateTime
FileTimeToLocalFileTime
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDriveTypeA
GetFileAttributesExA
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetStartupInfoA
GetSystemTimeAsFileTime
DosDateTimeToFileTime
LocalFileTimeToFileTime
QueryPerformanceCounter
SetFileAttributesA
SetFileTime
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
GetModuleHandleW
VirtualAllocEx
GetDriveTypeW
CreateFileA
GetTickCount
CloseHandle

user32

DispatchMessageA
EnableMenuItem
GetSystemMenu
PeekMessageA
SendDlgItemMessageA
LoadIconW
LoadIconA
CreateDialogParamA
CharNextExA
DestroyWindow

advapi32

RegOpenKeyA
RegQueryValueExA

ole32

CoTaskMemFree
CoInitializeEx
CoInitialize
CoCreateInstance
CoUninitialize

msvcrt

toupper
tolower
strspn
strpbrk
strncpy
strncmp
_XcptFilter
__doserrno
__getmainargs
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_acmdln
_adjust_fdiv
_c_exit
_cexit
_chmod
_chsize
_close
_controlfp
_eof
_errno
_except_handler3
_exit
_filelength
_getch
_getdrive
_initterm
_iob
_lseek
_mkdir
_open
_read
_stat
_strdup
_stricmp
_tempnam
_unlink
_vsnprintf
_write
atoi
exit
fgets
free
getenv
isalpha
isdigit
malloc
printf
strchr

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 531KB - Virtual size: 531KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rwu0
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de695632ca4601a8a471751adf4c8ff3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

msvcrt

Sections

.text Size: 15KB - Virtual size: 15KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 531KB - Virtual size: 531KB

.rwu0 Size: 11KB - Virtual size: 10KB

.rsrc Size: 92KB - Virtual size: 91KB

.text
Size: 15KB - Virtual size: 15KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 531KB - Virtual size: 531KB

.rwu0
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 92KB - Virtual size: 91KB