05f93aa421e7f9045e1501be28ef6f9c8d1867852ef5fe88aa5189af228d98d0

Sharing

Copy URL Twitter E-mail

General

Target

05f93aa421e7f9045e1501be28ef6f9c8d1867852ef5fe88aa5189af228d98d0
Size

48KB
MD5

35ce18c67cde938dcb4a273ef3867aff
SHA1

669c73a856fc360f6a24c373bd3b192fcc341487
SHA256

05f93aa421e7f9045e1501be28ef6f9c8d1867852ef5fe88aa5189af228d98d0
SHA512

5408dd719a654d6b6fa58a62fcd39e969d80be2a7712fa2d3910bb9785d1ef34466387882f9417a6e31e1783e073a42ba155582a0e4eba228fb64499a64a38cf
SSDEEP

768:fJKnXrO9kWc4Ueah5RHDZzWuz2ZtG4YzGR2fnNSpXC/pbHkGXX/JbjkA6A5Y:fJKxDPxZPzEG4YzUsnNQCBbEGXPJjkhJ

Score

N/A

Malware Config

Signatures

Files

05f93aa421e7f9045e1501be28ef6f9c8d1867852ef5fe88aa5189af228d98d0
.exe windows x86

98a27c18e27cf1a29f2da19377c2ff01

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetConsoleTitleW
GetSystemTimeAsFileTime
GetStartupInfoW
SetConsoleActiveScreenBuffer
ReplaceFile
LocalAlloc
GetWindowsDirectoryW
LockFileEx
SetFilePointerEx
SetConsoleFont
LoadLibraryA
VirtualLock
IsBadHugeReadPtr
VDMConsoleOperation
EnumResourceTypesA
GetGeoInfoW
ReleaseSemaphore
CreateDirectoryExA
ReadFile

usp10

ScriptStringFree
ScriptApplyDigitSubstitution
ScriptStringOut
ScriptLayout
ScriptString_pcOutChars
ScriptIsComplex
ScriptPlace
ScriptTextOut
UspAllocCache
ScriptCacheGetHeight
ScriptXtoCP
ScriptBreak
ScriptGetProperties
ScriptStringGetLogicalWidths
ScriptGetLogicalWidths
ScriptGetGlyphABCWidth
ScriptString_pLogAttr
ScriptString_pSize
LpkPresent

ntdll

RtlSetTimeZoneInformation
ZwPulseEvent
RtlAnsiStringToUnicodeSize
DbgUiRemoteBreakin
NtQueryPortInformationProcess

mapi32

IsBadBoundedStringPtr@8
FtDivFtBogus@20
ScGenerateMuid@4
HrSetOmiProvidersFlagsInvalid@4
UNKOBJ_ScAllocate@12
HrValidateParameters@8

msoert2

FIsEmptyA
CreateEnumFormatEtc
RicheditStreamOut
PszSkipWhiteA
CreateTempFileStream
CreateStreamOnHFile
PszDayFromIndex

apphelp

SdbGrabMatchingInfoEx
SdbFindFirstNamedTag
SdbOpenApphelpInformation
SdbReadBinaryTag
SdbQueryApphelpInformation

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98a27c18e27cf1a29f2da19377c2ff01

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

usp10

ntdll

mapi32

msoert2

apphelp

Sections

.text Size: 39KB - Virtual size: 39KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 39KB - Virtual size: 39KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 2KB