a8316a71aa21d13f3ce5d0ec418202ada949e2f0219b2276133a5456ca68f7d2

Sharing

Copy URL Twitter E-mail

General

Target

a8316a71aa21d13f3ce5d0ec418202ada949e2f0219b2276133a5456ca68f7d2
Size

102KB
MD5

ddb1e5695772a487b459b14fa7ae54aa
SHA1

d77e702583f1e56f939077e9346a4421aa47d51a
SHA256

a8316a71aa21d13f3ce5d0ec418202ada949e2f0219b2276133a5456ca68f7d2
SHA512

bc4c12f003e232fc81c5a1dd2d60403faa63c21f82ebb522bbdcc42cebb39afd1161726d58b1c51e202f748964fb32ed496c0ef90b61adb892fdcd3df555121c
SSDEEP

1536:Mr81px09H96aLVDpr3+GkipbR+Zf5qpp5G8G/jV0s6Z0tOmqqd32eGkqLSR:Ih9H9rz+GJ4RqpKBV6Z0OmqZ2

Score

N/A

Malware Config

Signatures

Files

a8316a71aa21d13f3ce5d0ec418202ada949e2f0219b2276133a5456ca68f7d2
.exe windows x86

4d414b7be9cc58124e54cb8be8a94cc8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AssignProcessToJobObject
CancelDeviceWakeupRequest
CloseHandle
ConvertThreadToFiber
CopyFileExA
CreateFileA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FormatMessageW
GetACP
GetCPInfo
GetCommandLineA
GetCurrentThreadId
GetEnvironmentStrings
GetFileAttributesA
GetFileType
GetLastError
GetLocalTime
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetVersion
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapFree
InitializeCriticalSection
IsBadCodePtr
LeaveCriticalSection
LoadLibraryA
RaiseException
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
SetLastError
SetProcessPriorityBoost
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WriteFile
WriteFileEx

gdi32

AbortPath
ArcTo
CloseEnhMetaFile
ColorCorrectPalette
CopyMetaFileW
CreateBitmap

user32

EnumThreadWindows
MessageBoxA
wsprintfA

ole32

CoCopyProxy
CoFileTimeNow
CoGetCallContext
CoGetInterfaceAndReleaseStream
CoRegisterChannelHook
CoRegisterMallocSpy
CoRegisterMessageFilter
CreateGenericComposite
MkParseDisplayName
OleCreateFromDataEx
StgSetTimes

Exports

Exports

__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d414b7be9cc58124e54cb8be8a94cc8

Headers

File Characteristics

Imports

kernel32

gdi32

user32

ole32

Exports

Exports

Sections

.text Size: 35KB - Virtual size: 36KB

.data Size: 13KB - Virtual size: 28KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 46KB - Virtual size: 45KB

.reloc Size: 2KB - Virtual size: 4KB

.text
Size: 35KB - Virtual size: 36KB

.data
Size: 13KB - Virtual size: 28KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 46KB - Virtual size: 45KB

.reloc
Size: 2KB - Virtual size: 4KB