a1a56bf02de3e8a12cd2a727b19f2a061f390c515c55621784d76199de65d330

Sharing

Copy URL Twitter E-mail

General

Target

a1a56bf02de3e8a12cd2a727b19f2a061f390c515c55621784d76199de65d330
Size

129KB
MD5

87e18d0aa2b8513733f55e33ddccae55
SHA1

23fbf051edfd8114ddbb99f37e1c5b9eea3d3f03
SHA256

a1a56bf02de3e8a12cd2a727b19f2a061f390c515c55621784d76199de65d330
SHA512

84168804b496db0893386dea91c2bf9dd99bfed0190b915000a9c87c4f47b4cf7e34c1c0acfb8317740fff86b98cba5fb58872217aeb2309eb68ad4e95af59d8
SSDEEP

3072:I5zg0TkcvTjEIZUv0zgHSQ8cbFgbWumLygyMTAhZubb:ig0T/vPX6v+FQQbjmLfdTmZub

Score

N/A

Malware Config

Signatures

Files

a1a56bf02de3e8a12cd2a727b19f2a061f390c515c55621784d76199de65d330
.exe windows x86

134dc607c6f58edbba8b9e9d05507637

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CreateFileA
ExitProcess
GetACP
GetCPInfo
GetCommandLineA
GetCurrentThreadId
GetEnvironmentStrings
GetFileType
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetVersion
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapFree
LoadLibraryA
MultiByteToWideChar
OpenFileMappingA
RaiseException
RtlUnwind
SetConsoleCtrlHandler
SetFileAttributesA
SetFilePointer
SetHandleCount
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WideCharToMultiByte
WriteFile

user32

BroadcastSystemMessageA
CallMsgFilterA
CharUpperBuffA
CheckMenuItem
CloseDesktop
CreateDesktopW
CreateIcon
CreateWindowStationA
DdeConnectList
DdeEnableCallback
DefDlgProcW
DefMDIChildProcA
DestroyIcon
EnumThreadWindows
ExcludeUpdateRgn
FillRect
GetDialogBaseUnits
GetGUIThreadInfo
GetScrollInfo
GetSysColor
GetSysColorBrush
GetWindowTextLengthW
IsMenu
LoadMenuW
MessageBoxA
OpenDesktopW
PackDDElParam
PostMessageA
RegisterClassExA
SetCaretPos
SetMenuContextHelpId
wsprintfA
GetSystemMenu

Exports

Exports

__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 92KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

femwfvm
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

134dc607c6f58edbba8b9e9d05507637

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 35KB - Virtual size: 36KB

.data Size: 11KB - Virtual size: 16KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 54KB - Virtual size: 56KB

.reloc Size: 92KB - Virtual size: 120KB

femwfvm Size: 4KB - Virtual size: 4KB

.text
Size: 35KB - Virtual size: 36KB

.data
Size: 11KB - Virtual size: 16KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 54KB - Virtual size: 56KB

.reloc
Size: 92KB - Virtual size: 120KB

femwfvm
Size: 4KB - Virtual size: 4KB