29f5dc65b4d5147b54f140ec47358e8f139e37ab66ac407e1a050f69d6f73f41

Sharing

Copy URL Twitter E-mail

General

Target

29f5dc65b4d5147b54f140ec47358e8f139e37ab66ac407e1a050f69d6f73f41
Size

307KB
MD5

b870cbbdcbb65c7e4876d92054c75bef
SHA1

dd48221df5b6c75725f9815d391061ea5cf45b71
SHA256

29f5dc65b4d5147b54f140ec47358e8f139e37ab66ac407e1a050f69d6f73f41
SHA512

f25765c70c863694079b02d8acdf4ff2b253ca7f2c802375b0402533112259a77ab3af8d40d56dbd1c2279aa91b3e5b08737eecea3d7739754440b405293ebee
SSDEEP

6144:YKOps6uxt0NaJpf1MqXmYToHy/AtwjWiFUK0H+l2TIkato6EdNhCovZP:YHtuxGaJt1MqfTIy/vyKoCkB6gCovx

Score

N/A

Malware Config

Signatures

Files

29f5dc65b4d5147b54f140ec47358e8f139e37ab66ac407e1a050f69d6f73f41
.zip
pacchetto_742894728974004.exe
.exe windows x86

33b55dc74801871e9f454179bb62bd42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCPInfo
GetComputerNameW
OutputDebugStringW
GetModuleHandleW
VirtualFree
GetProcessHeap
lstrlenW
GetLastError
lstrlenA
VirtualAlloc
OutputDebugStringA
GetVersion
HeapReAlloc
IsProcessorFeaturePresent
RtlUnwind
LoadLibraryW
GetComputerNameA
GetCurrentDirectoryW
GetCommandLineW
HeapSetInformation
GetStartupInfoW
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
DecodePointer
TlsFree
SetLastError
GetCurrentThreadId
GetProcAddress
WideCharToMultiByte
LCMapStringW
MultiByteToWideChar
SetUnhandledExceptionFilter
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
UnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
GetStringTypeW
LeaveCriticalSection
EnterCriticalSection
HeapFree
Sleep
HeapAlloc
HeapSize

user32

LoadCursorW
GetCursorPos
GetMessageTime
LoadBitmapA

advapi32

RegOpenKeyExA
GetCurrentHwProfileW

Sections

text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 481KB - Virtual size: 480KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

33b55dc74801871e9f454179bb62bd42

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

text Size: 30KB - Virtual size: 30KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 3KB - Virtual size: 7KB

.rsrc Size: 481KB - Virtual size: 480KB

.eloc Size: 3KB - Virtual size: 3KB

text
Size: 30KB - Virtual size: 30KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 3KB - Virtual size: 7KB

.rsrc
Size: 481KB - Virtual size: 480KB

.eloc
Size: 3KB - Virtual size: 3KB