1e3d43db0f7df4d61d57d9c867f9217ba69c61b58563a3893ea4fff75cf81a1e

Sharing

Copy URL

Twitter E-mail

General

Target

1e3d43db0f7df4d61d57d9c867f9217ba69c61b58563a3893ea4fff75cf81a1e
Size

485KB
MD5

8f85ebeafa44681fc4b8e10342722499
SHA1

fbdb1a95913a752cbe80313cc80d4363b9bfc981
SHA256

1e3d43db0f7df4d61d57d9c867f9217ba69c61b58563a3893ea4fff75cf81a1e
SHA512

3959fb203d6c2bf6f445c026d36f7e7848271a84b8e9132a1e58d8b24c9903617dd2e34677e5422d75702faef1d6e0e775f8745202d3b4dd288fb319beae1900
SSDEEP

6144:GCrmIi+E4cu3O6Jgb2Wf3urb7+ubYihDwUWxid9ZKWw8Um5uukm8nz1lxWdF:7mIiR5u+6ebl3A+ubYK0Uy2ZKJnzRW

Score

N/A

Malware Config

Signatures

Files

1e3d43db0f7df4d61d57d9c867f9217ba69c61b58563a3893ea4fff75cf81a1e
.exe windows x86

c9357a7723c5668733b8ff0870ddcde9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceNamesW
lstrlenA
SetEndOfFile
FreeLibrary
CallNamedPipeA
SetUnhandledExceptionFilter
ReadConsoleA
GetProfileSectionA
WaitForSingleObject
OpenSemaphoreA
ConnectNamedPipe
SetTapeParameters
GetProcessPriorityBoost
FindNextVolumeMountPointA
SetCommState
SetProcessPriorityBoost
GetPriorityClass
ActivateActCtx
LoadLibraryW
GetConsoleMode
CopyFileW
GetPrivateProfileStructW
LeaveCriticalSection
WritePrivateProfileStructW
ReadFile
lstrcatA
GetBinaryTypeW
GetACP
ExitThread
GetNamedPipeHandleStateW
InterlockedExchange
GetStdHandle
IsDBCSLeadByteEx
GetCurrentDirectoryW
SetLastError
GetProcAddress
GetConsoleDisplayMode
LoadLibraryA
LocalAlloc
BuildCommDCBAndTimeoutsW
SetCurrentDirectoryW
SetFileApisToANSI
AddAtomA
SetEnvironmentVariableA
CreateMutexA
GetVersionExA
LocalFree
GetLastError
MoveFileA
GetStartupInfoW
HeapValidate
IsBadReadPtr
RaiseException
EnterCriticalSection
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetModuleFileNameW
SetStdHandle
WriteFile
WideCharToMultiByte
GetConsoleCP
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleHandleW
Sleep
InterlockedIncrement
InterlockedDecrement
ExitProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
HeapDestroy
HeapCreate
HeapFree
VirtualFree
GetModuleFileNameA
HeapAlloc
HeapSize
HeapReAlloc
VirtualAlloc
GetOEMCP
GetCPInfo
IsValidCodePage
InitializeCriticalSectionAndSpinCount
DebugBreak
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
RtlUnwind
MultiByteToWideChar
SetFilePointer
WriteConsoleA
GetConsoleOutputCP
GetModuleHandleA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
FlushFileBuffers
CreateFileA
CloseHandle

Exports

Exports

_asdasfafswery@8
_asdga@4
_every@4
_trutovik@4
_weewgg@8

Sections

.text
Size: 410KB - Virtual size: 409KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 39.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 89B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c9357a7723c5668733b8ff0870ddcde9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 410KB - Virtual size: 409KB

.rdata Size: 45KB - Virtual size: 44KB

.data Size: 8KB - Virtual size: 39.5MB

.tls Size: 512B - Virtual size: 89B

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 410KB - Virtual size: 409KB

.rdata
Size: 45KB - Virtual size: 44KB

.data
Size: 8KB - Virtual size: 39.5MB

.tls
Size: 512B - Virtual size: 89B

.rsrc
Size: 21KB - Virtual size: 20KB