5a80d84b2c53863258cfb4f7ae7af317f517a8e7b53cc08ba5f64993be6c499a

Sharing

Copy URL Twitter E-mail

General

Target

5a80d84b2c53863258cfb4f7ae7af317f517a8e7b53cc08ba5f64993be6c499a
Size

258KB
MD5

a79d59111e157663c89fba6603c27123
SHA1

05c1c580731417e801911f71cc4e0a77f3e0d189
SHA256

5a80d84b2c53863258cfb4f7ae7af317f517a8e7b53cc08ba5f64993be6c499a
SHA512

a1ea8c17c81cde344f13678217b5ee49eb9e65302ec751ffa818c81fc7ab6b68f064e89112c6f8ac5c33e5205bc6c40b0f2cf15b8330233ffb3ab35622c8c4df
SSDEEP

6144:iU5o06q7Xg4F8Bjv29f2jBHkLXhfUkD6cNGkfrnAvoXC1M9UEL3R:7aigtyulNwNGmAkUM9JL3R

Score

N/A

Malware Config

Signatures

Files

5a80d84b2c53863258cfb4f7ae7af317f517a8e7b53cc08ba5f64993be6c499a
.exe windows x86

9052b9d8ca50f7343fe46120904e7a11

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetModuleFileNameW
GetCurrentThreadId
IsDebuggerPresent
SetUnhandledExceptionFilter
GetCurrentProcess
GetTickCount
QueryPerformanceCounter
IsBadReadPtr
GetCurrentProcessId
TlsAlloc
GetVersion
GetProcAddress

scecli

SceStartTransaction
SceFreeProfileMemory
SceGetTimeStamp
SceGetAnalysisAreaSummary
SceGetObjectSecurity
SceGetDbTime
SceGetServerProductType
SceCompareSecurityDescriptors
SceConfigureConvertedFileSecurity
SceIsSystemDatabase
SceAnalyzeSystem

mciseq

DriverProc

Sections

CODE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.f
Size: 2KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kZEAc
Size: 2KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 92KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dJPrsl
Size: 5KB - Virtual size: 718KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 124KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Is
Size: 3KB - Virtual size: 536KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9052b9d8ca50f7343fe46120904e7a11

Headers

File Characteristics

Imports

kernel32

scecli

mciseq

Sections

CODE Size: 4KB - Virtual size: 4KB

.text Size: 12KB - Virtual size: 12KB

.f Size: 2KB - Virtual size: 104KB

.rdata Size: 1024B - Virtual size: 31KB

.kZEAc Size: 2KB - Virtual size: 182KB

.edata Size: 92KB - Virtual size: 151KB

.data Size: 7KB - Virtual size: 138KB

.dJPrsl Size: 5KB - Virtual size: 718KB

.edata Size: 124KB - Virtual size: 202KB

.Is Size: 3KB - Virtual size: 536KB

.rsrc Size: 2KB - Virtual size: 1KB

CODE
Size: 4KB - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 12KB

.f
Size: 2KB - Virtual size: 104KB

.rdata
Size: 1024B - Virtual size: 31KB

.kZEAc
Size: 2KB - Virtual size: 182KB

.edata
Size: 92KB - Virtual size: 151KB

.data
Size: 7KB - Virtual size: 138KB

.dJPrsl
Size: 5KB - Virtual size: 718KB

.edata
Size: 124KB - Virtual size: 202KB

.Is
Size: 3KB - Virtual size: 536KB

.rsrc
Size: 2KB - Virtual size: 1KB