767d961cc265095007ee89611bbe668ceb1a20e2e65e264b2362fdcfce1759d4

Sharing

Copy URL Twitter E-mail

General

Target

767d961cc265095007ee89611bbe668ceb1a20e2e65e264b2362fdcfce1759d4
Size

394KB
MD5

edc23a7f178b7234901110bbbb5a8fb5
SHA1

649a17d3859a3e344b02ac9e4cf3d0058ff7c949
SHA256

767d961cc265095007ee89611bbe668ceb1a20e2e65e264b2362fdcfce1759d4
SHA512

31995dad5fbf5406d0ad76c9bd0807ad6b3254942acd3b7eb39bf1234fed71bc9804d5f0d9426fed1896287f563c30546630a79933100f05d7e9f1977e9f9545
SSDEEP

12288:WglkWakgiOynbDkLyOV42b68u/XECceyf8fzQKah:WglkvRRybgDf8rQK

Score

N/A

Malware Config

Signatures

Files

767d961cc265095007ee89611bbe668ceb1a20e2e65e264b2362fdcfce1759d4
.exe windows x86

e4f6926037dfa2a7bd2079288ed39355

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegQueryValueExW

msvcrt

_controlfp
rand
isdigit
_except_handler3
_XcptFilter
_acmdln
__getmainargs
exit

kernel32

GetThreadTimes
TerminateThread
HeapDestroy
CreateEventA
LeaveCriticalSection
lstrcpyW
VirtualAllocEx
PostQueuedCompletionStatus
InterlockedDecrement
GetFileAttributesA
GetFileTime
SetNamedPipeHandleState
ReadFileScatter
GetThreadSelectorEntry
lstrlenW
CreateNamedPipeA
RtlZeroMemory
WriteFile
OpenThread
GetCurrentProcessId
HeapCompact
CreateFileA
EnterCriticalSection
GetTickCount
GetSystemTimeAdjustment
ReadFileEx
InterlockedIncrement
OpenFileMappingA
IsValidLocale
SuspendThread
RegisterWaitForInputIdle
EnumSystemLanguageGroupsA
GetSystemTimes
HeapAlloc
WriteFileEx
DosDateTimeToFileTime
GetFirmwareEnvironmentVariableA
GetSystemTime
ConvertDefaultLocale
HeapFree
TryEnterCriticalSection
SetFilePointer
GetQueuedCompletionStatus
ConnectNamedPipe
InterlockedExchange
InterlockedPushEntrySList
SetEnvironmentVariableA
MapViewOfFile
CreateFileMappingA
InterlockedCompareExchange
UnmapViewOfFile
HeapValidate
lstrcatA
SetFirmwareEnvironmentVariableA
SetThreadContext
GetThreadPriorityBoost
ResumeThread
SetThreadIdealProcessor
SetEvent
SetThreadAffinityMask
InitializeCriticalSection
GetEnvironmentVariableA
WaitNamedPipeA
ReadFile
GetSystemDefaultLangID
GetLocaleInfoA
GetSystemDefaultLCID
FileTimeToLocalFileTime
RtlFillMemory
HeapCreate
WaitForSingleObject
CreateThread
lstrcatW
CreateIoCompletionPort
InterlockedPopEntrySList

user32

GetDlgItemInt
ReleaseCapture
PostMessageW
SetDlgItemInt
IsIconic
ShowWindow
TranslateMessage
LoadAcceleratorsW
GetDC
RegisterClassW
LoadCursorW
DialogBoxParamW
InvalidateRect
SystemParametersInfoW
GetWindowDC

Sections

.text
Size: 235KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4f6926037dfa2a7bd2079288ed39355

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

msvcrt

kernel32

user32

Sections

.text Size: 235KB - Virtual size: 235KB

.data Size: 149KB - Virtual size: 148KB

.rsrc Size: 9KB - Virtual size: 376KB

.text
Size: 235KB - Virtual size: 235KB

.data
Size: 149KB - Virtual size: 148KB

.rsrc
Size: 9KB - Virtual size: 376KB