a86074663676e0e590e70c442af17d830ad03c6b9b01cdfd648f7130367367cd

Sharing

Copy URL Twitter E-mail

General

Target

a86074663676e0e590e70c442af17d830ad03c6b9b01cdfd648f7130367367cd
Size

114KB
MD5

b816ccb41e1663eb90a4f818200a3442
SHA1

78611c2367f82c2bc995dd4ded30c1d6a446be2b
SHA256

a86074663676e0e590e70c442af17d830ad03c6b9b01cdfd648f7130367367cd
SHA512

2f77e25fdd18dac210a7df5763ea817b74ab6154bbd0f0e0fb9b032efecc25e2e2523ace92a0e3570395533756bc23c3264f22b970454fe290bcf8148947a556
SSDEEP

3072:8M4t0WuZrykEeFUzQGnnR8qCVWXhu1OvuvuFvkhMkF9kUN0s4:S0RMkd2nTxu1OViw2T

Score

N/A

Malware Config

Signatures

Files

a86074663676e0e590e70c442af17d830ad03c6b9b01cdfd648f7130367367cd
.exe windows x86

878cb8d9959a13e86c0c7af52714d54c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
QueryDosDeviceW
GetExitCodeThread
VirtualQuery
AddAtomW
lstrcmpA
GetAtomNameW
lstrcpyA
SleepEx
GetComputerNameA
MultiByteToWideChar
GetComputerNameExA
DuplicateHandle
LoadResource
CancelIo
GlobalAddAtomW
EnumSystemLocalesA
SystemTimeToFileTime
ResetEvent
WaitForMultipleObjects
GetThreadTimes
GetStartupInfoA
lstrcpynA
GetOverlappedResult
TlsGetValue
LoadLibraryW
GetTimeZoneInformation
CopyFileA
DeleteCriticalSection
ResumeThread
SetLocalTime
GetFileAttributesA
GetLastError
GetBinaryTypeW
SetUnhandledExceptionFilter
GetModuleHandleA
CreateMutexA
GetHandleInformation
GetVersion
MulDiv
LCMapStringA
TlsFree
GlobalHandle
FlushViewOfFile
GetStdHandle
LoadLibraryA
FindFirstFileA
CreateNamedPipeW
GetSystemDefaultLangID
HeapSize
CreateMutexW
CopyFileExA
GetCompressedFileSizeW
HeapUnlock
GlobalLock
GetStringTypeExW
GetCurrentThreadId
SetCurrentDirectoryA
EnumResourceNamesW
MoveFileExW
LCMapStringW
GlobalCompact
GetUserDefaultLCID
GetUserDefaultUILanguage
VerifyVersionInfoW
CompareFileTime
GlobalUnlock
GetTimeFormatW
SetThreadPriority

psapi

InitializeProcessForWsWatch

rpcrt4

I_RpcReallocPipeBuffer

crypt32

CertFindAttribute

Exports

Exports

_SeekFileEntrance@12

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.test1
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vptr1
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xpdata
Size: - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

878cb8d9959a13e86c0c7af52714d54c

Headers

File Characteristics

Imports

kernel32

psapi

rpcrt4

crypt32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.test1 Size: 512B - Virtual size: 76B

.vptr1 Size: 512B - Virtual size: 64B

.data Size: 2KB - Virtual size: 2KB

.xpdata Size: - Virtual size: 111KB

.rsrc Size: 96KB - Virtual size: 96KB

.reloc Size: 1024B - Virtual size: 988B

.text
Size: 12KB - Virtual size: 12KB

.test1
Size: 512B - Virtual size: 76B

.vptr1
Size: 512B - Virtual size: 64B

.data
Size: 2KB - Virtual size: 2KB

.xpdata
Size: - Virtual size: 111KB

.rsrc
Size: 96KB - Virtual size: 96KB

.reloc
Size: 1024B - Virtual size: 988B