013b2f6760093b54ae0e6967356c5dc671765896cd6247fb5e78a3f3eec10df8

Sharing

Copy URL

Twitter E-mail

General

Target

013b2f6760093b54ae0e6967356c5dc671765896cd6247fb5e78a3f3eec10df8
Size

512KB
MD5

07f92d01cc08584af1562f3a6800f000
SHA1

5e29272bcdc07626208090fa22740834a97dc9a1
SHA256

013b2f6760093b54ae0e6967356c5dc671765896cd6247fb5e78a3f3eec10df8
SHA512

7014d100ea36e695ac24e3e2d802d3c74a6b33fbf725d52321a888c2bdd8f9def02938e93c2c335a5683414c66e23a5babcec6b9c06fc9e0e3f92ce598b82bfc
SSDEEP

6144:6keJdtgMnXURRwU//QUYMXDYDp6LBquvvmpwNzrX3o2LhNTo7LK142FL/6waNql4:6keJdtgMXUWUgUYMXDYMBqro3oDsj4c

Score

N/A

Malware Config

Signatures

Files

013b2f6760093b54ae0e6967356c5dc671765896cd6247fb5e78a3f3eec10df8
.exe windows x86

8e9c474403cdc841b0c316285f3d2f45

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
GetTickCount
GetLocalTime
LoadLibraryA
VirtualFree
TerminateThread
GetModuleHandleW
GetProcAddress
VirtualAlloc
GetLastError
SetStdHandle
CloseHandle
GetLocaleInfoA
SetEvent
Sleep
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
EnterCriticalSection
LeaveCriticalSection
DebugBreak
GetStdHandle
WriteFile
InterlockedDecrement
OutputDebugStringA
InterlockedIncrement
GetModuleFileNameA
RtlUnwind
IsBadWritePtr
IsBadReadPtr
HeapValidate
TerminateProcess
GetCurrentProcess
ExitProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
HeapDestroy
HeapCreate
HeapFree
MultiByteToWideChar
VirtualProtect
GetSystemInfo
VirtualQuery
HeapAlloc
HeapReAlloc
GetACP
GetOEMCP
GetCPInfo
InitializeCriticalSection
FlushFileBuffers
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
ReadFile
RaiseException
LCMapStringA
LCMapStringW
SetFilePointer
GetStringTypeA
GetStringTypeW

user32

SetFocus
SendMessageA
MessageBoxA
LoadIconA
GetDesktopWindow
ReleaseDC

ole32

CoInitialize

avifil32

AVIMakeFileFromStreams

winscard

SCardCancel
SCardConnectA

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xcode
Size: 372KB - Virtual size: 371KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e9c474403cdc841b0c316285f3d2f45

Headers

File Characteristics

Imports

kernel32

user32

ole32

avifil32

winscard

Sections

.text Size: 88KB - Virtual size: 85KB

.xcode Size: 372KB - Virtual size: 371KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 16KB - Virtual size: 20KB

.rsrc Size: 20KB - Virtual size: 392KB

.text
Size: 88KB - Virtual size: 85KB

.xcode
Size: 372KB - Virtual size: 371KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 16KB - Virtual size: 20KB

.rsrc
Size: 20KB - Virtual size: 392KB