60d61a9f60dd755a1b63d646b3381dc5c30414c6e0b750a73ba6572af624ab9b

Sharing

Copy URL Twitter E-mail

General

Target

60d61a9f60dd755a1b63d646b3381dc5c30414c6e0b750a73ba6572af624ab9b
Size

223KB
MD5

2e4654932784aac174188ba662927983
SHA1

dc6831df66fd9d7adfbf0e3b7a5d5095d17e487d
SHA256

60d61a9f60dd755a1b63d646b3381dc5c30414c6e0b750a73ba6572af624ab9b
SHA512

0549a136775f02e643f7f238b268b0cfbbc60ce481dd043ca275775357c0c5cd5f1904b5165482504d147b9938995d5fac67fdad9e9d8e8319195f9fd97ae481
SSDEEP

6144:DvJyJPk2W0TsmnLhGr+HIr7ypxd8zCfBG03z:DmPLXLQjr70czEBG0

Score

N/A

Malware Config

Signatures

Files

60d61a9f60dd755a1b63d646b3381dc5c30414c6e0b750a73ba6572af624ab9b
.exe windows x86

5b9f62e75d8a78f6134b7aa18f313d4e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
VirtualFree
VirtualAlloc
lstrcpyA
SetEvent
lstrlenA
GetPrivateProfileSectionNamesA
lstrcatA
FreeLibrary
MultiByteToWideChar
WideCharToMultiByte
lstrcmpA
GetVersionExA
CreateDirectoryA
GetDriveTypeA
LocalFree
LocalAlloc
RemoveDirectoryA
WriteFile
Sleep
ReadFile
SetFilePointer
GetLastError
SetLastError
CreateProcessA
GetCurrentProcess
CreateRemoteThread
WriteProcessMemory
VirtualAllocEx
OpenProcess
ExitProcess
MoveFileA
GetLocalTime
CreateEventA
HeapFree
HeapAlloc
GetProcessHeap
GlobalFree
GlobalUnlock
ReleaseMutex
WaitForSingleObject
GetTickCount
OpenEventA
SetErrorMode
CreateMutexA
OutputDebugStringA
GetStartupInfoA
InterlockedExchange
GetModuleHandleA
RaiseException

msvcrt

strlen
strstr
memcmp
strcpy
strchr
malloc
strcmp
free
_except_handler3
strrchr
rename
strcat
strncmp
atoi
_errno
strtok
strncat
_ftol
calloc
??1type_info@@UAE@XZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
ceil
_CxxThrowException
memmove
_beginthreadex
__CxxFrameHandler
_strnicmp
memcpy
??2@YAPAXI@Z
memset
??3@YAXPAX@Z
_strupr

msvcp60

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

userenv

CreateEnvironmentBlock

msvfw32

ICSendMessage
ICSeqCompressFrameEnd

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ujyhkuy
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b9f62e75d8a78f6134b7aa18f313d4e

Headers

File Characteristics

Imports

kernel32

msvcrt

msvcp60

userenv

msvfw32

Sections

.text Size: 111KB - Virtual size: 111KB

.ujyhkuy Size: 14KB - Virtual size: 14KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 13KB - Virtual size: 15KB

.rsrc Size: 71KB - Virtual size: 70KB

.text
Size: 111KB - Virtual size: 111KB

.ujyhkuy
Size: 14KB - Virtual size: 14KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 13KB - Virtual size: 15KB

.rsrc
Size: 71KB - Virtual size: 70KB