77e5c7bb64330a986f02a5a788a6e419944de1b1be9d873c2f1892e464dfa095

Sharing

Copy URL Twitter E-mail

General

Target

77e5c7bb64330a986f02a5a788a6e419944de1b1be9d873c2f1892e464dfa095
Size

50KB
MD5

9276f9ca505f3f86ace91a9e9ed072b9
SHA1

1475ec0a5348bfd1b55d999e03b7915b4ea8312e
SHA256

77e5c7bb64330a986f02a5a788a6e419944de1b1be9d873c2f1892e464dfa095
SHA512

dac9aa870a239c7a08de8b1a28a5266e9b7f8340529f131ccf1a7ad858b1ae54fc24cea8283f4649b9f1ac3cd06e6e485a08f7fdc1cc7816ace6468fac1a81cf
SSDEEP

768:phuLr6rs1ihbySRYHkpj7leUtOkVKQkg+9nooyCqqFv+hLKrXll5mINZ:U2bxYEaxQi9ooiGQLKLll5DNZ

Score

N/A

Malware Config

Signatures

Files

77e5c7bb64330a986f02a5a788a6e419944de1b1be9d873c2f1892e464dfa095
.exe windows x86

f44ad37901df96cab3b656706c78df96

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_flsbuf
wcstombs
_strupr
_safe_fdivr
malloc
_timezone
isalnum
_wspawnvp
exit
??4bad_cast@@QAEAAV0@ABV0@@Z
_adj_fprem1
__set_app_type
__getmainargs
_adj_fdivr_m16i
_i64toa
_splitpath
_yn
_setmaxstdio
_futime
_wcsncoll
__p___mb_cur_max
_wctime64
??_Fbad_cast@@QAEXXZ
_CIsinh
??_U@YAPAXI@Z
__p__commode
_wcmdln
strncpy
_wfindnext
_execve
fclose
__CxxFrameHandler
_execvpe
_fgetchar
_mbscoll
toupper
__p__amblksiz
??_7exception@@6B@
fgets
_mbsrev
_getwche
_wutime64
__p__mbcasemap
_ismbbalnum
_wfopen

kernel32

CreateIoCompletionPort
OpenSemaphoreW
SetLastError
SetConsoleTextAttribute
GetFirmwareEnvironmentVariableA
IsValidLocale
GetCalendarInfoW
InitAtomTable
ShowConsoleCursor
CompareFileTime
EraseTape
IsBadReadPtr
GetConsoleTitleA
GetTickCount
SetConsoleNumberOfCommandsA
ReadFile
LocalFileTimeToFileTime
CreateActCtxW
LZOpenFileA
BeginUpdateResourceW
DeleteVolumeMountPointW
GetSystemDefaultLCID
WriteProfileSectionA
SetEnvironmentVariableA
GetUserDefaultLCID
AllocConsole
GetProfileStringW
LoadLibraryW
SetThreadAffinityMask
SetVolumeLabelW
VirtualFreeEx
EnumSystemCodePagesW
DuplicateHandle
LZDone
SetFirmwareEnvironmentVariableW
lstrcpy
FindFirstFileExW
LoadResource
FindFirstVolumeMountPointW
GenerateConsoleCtrlEvent

ws2_32

shutdown
htons
WSASocketW
WSARecvDisconnect
WPUCompleteOverlappedRequest
WSAResetEvent
WSACloseEvent
WSAWaitForMultipleEvents
getaddrinfo

winmm

midiInGetNumDevs
auxGetNumDevs
mmGetCurrentTask
waveInGetDevCapsA
mixerGetLineInfoA
midiStreamStop
wod32Message
PlaySound
waveOutGetID
mmioSetBuffer
sndPlaySoundA
timeGetTime
waveInStop
midiOutShortMsg
mmioSetInfo
joyGetPos
mixerGetLineControlsA
midiOutReset
DrvGetModuleHandle
midiOutCacheDrumPatches
midiInMessage
mmTaskBlock
mxd32Message
waveOutClose

sqlunirl

_EnumDesktops_@12
_GetFileAttributesEx_@12
_CallNamedPipe_@28
_GetPrivateProfileString_@24
_GetOutlineTextMetrics_@12
_lstrcat_@8
_SHGetFileInfo_@20
_PrivilegedServiceAuditAlarm_@20
_CommConfigDialog_@12
_ttof

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f44ad37901df96cab3b656706c78df96

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

ws2_32

winmm

sqlunirl

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 7KB - Virtual size: 7KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 4KB - Virtual size: 4KB