8513f2929ef845edb9af925cf44b535c3552ee5b5fb4a1fa962ecd18a69574c2

Sharing

Copy URL Twitter E-mail

General

Target

8513f2929ef845edb9af925cf44b535c3552ee5b5fb4a1fa962ecd18a69574c2
Size

139KB
MD5

4fc9c62eab479b1443dfdd4a8f0dcfd4
SHA1

17ccee9503448f694f168d92676d4d903e0c006f
SHA256

8513f2929ef845edb9af925cf44b535c3552ee5b5fb4a1fa962ecd18a69574c2
SHA512

83a5fbebafeaa04f9ba5954c552d1ad763019c3d4d16847a6bdc3ad784133cac58e6ce6b689c782a9af9546db9a913a1f3acad9d87aa7252e01ae756c3942e2a
SSDEEP

3072:7mpIev6EFGLObwce3eykx4KoTehB7VUv6h+D3WfR16H3h05B09:xu6ESObR5yxTef7ViGfbiUBS

Score

N/A

Malware Config

Signatures

Files

8513f2929ef845edb9af925cf44b535c3552ee5b5fb4a1fa962ecd18a69574c2
.exe windows x86

7a7dc815a6240bcfdd24edf64c4d804c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

HBRUSH_UserFree
OleCreateDefaultHandler
CoGetDefaultContext
CoQueryAuthenticationServices
ComPs_NdrDllGetClassObject
OleNoteObjectVisible
CoAllowSetForegroundWindow
CoLoadLibrary
CoPushServiceDomain
CoFreeUnusedLibrariesEx
HMETAFILE_UserMarshal
HMENU_UserSize
HPALETTE_UserFree
FmtIdToPropStgName
HGLOBAL_UserMarshal
CoQueryProxyBlanket
CreateItemMoniker
CoInitializeSecurity
CoGetObject
CoGetMarshalSizeMax
CoLockObjectExternal
OleRegEnumFormatEtc
WriteClassStm
OleConvertIStorageToOLESTREAMEx
CoGetInterceptorFromTypeInfo
SNB_UserFree
OleBuildVersion
RevokeDragDrop
CoSetProxyBlanket
OleGetAutoConvert
OleQueryCreateFromData
HWND_UserMarshal
DllGetClassObject

kernel32

PeekConsoleInputW
GetLocaleInfoW
Process32NextW
GetFullPathNameW
GetModuleHandleW
LoadLibraryW
DeleteFiber
SetPriorityClass
FlushConsoleInputBuffer
LocalHandle
VirtualAllocEx
GetCurrentThread
GetSystemDefaultUILanguage
Heap32Next
GetUserDefaultUILanguage

dssec

DllCanUnloadNow
DSCreateISecurityInfoObject
DllGetClassObject
DSCreateSecurityPage
DSCreateISecurityInfoObjectEx
DSEditSecurity

perfctrs

CollectNbfPerformanceData
CloseDhcpPerformanceData
OpenDhcpPerformanceData
OpenNbfPerformanceData
CloseTcpIpPerformanceData
OpenNWNBPerformanceData
CollectNWNBPerformanceData
OpenTcpIpPerformanceData

faultrep

ReportHang
AddERExcludedApplicationA
AddERExcludedApplicationW
ReportFault

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a7dc815a6240bcfdd24edf64c4d804c

Headers

File Characteristics

Imports

ole32

kernel32

dssec

perfctrs

faultrep

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 53KB - Virtual size: 52KB

.data Size: 22KB - Virtual size: 21KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 53KB - Virtual size: 52KB

.data
Size: 22KB - Virtual size: 21KB

.rsrc
Size: 10KB - Virtual size: 9KB