b70eefe1de1c1fd2700505f3e0c6fbf3aad84a60e17787dde9dee502172e57ea

Sharing

Copy URL Twitter E-mail

General

Target

b70eefe1de1c1fd2700505f3e0c6fbf3aad84a60e17787dde9dee502172e57ea
Size

126KB
MD5

31c6cfc6bfc20e5937062f92d176b1c9
SHA1

4910473ab5a582b52b6428eaf386ec138eedc24f
SHA256

b70eefe1de1c1fd2700505f3e0c6fbf3aad84a60e17787dde9dee502172e57ea
SHA512

3af3a0a90252f8bcd4a91a3a28e91c7387e1670443c3f7c9754d786573a1e610a93664af8562c324bd9b1c811d02ad6fe0e5c9b328ea01f74cb7aecd4d839d96
SSDEEP

3072:b7KGIRgQohx5rfwrywLaWEJlj28aSSxYZ6wns4eF:OFo/VwucCR2x2jna

Score

N/A

Malware Config

Signatures

Files

b70eefe1de1c1fd2700505f3e0c6fbf3aad84a60e17787dde9dee502172e57ea
.exe windows x86

e07fce498d25efcf514451c4bc7d9434

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetFileType
LocalUnlock
GetProcAddress
GetEnvironmentStrings
VirtualProtect
CreateFileMappingA
CancelWaitableTimer
CreateRemoteThread
GlobalAlloc
GetModuleFileNameA
FindNextChangeNotification
VirtualFree
PeekConsoleInputA
LocalReAlloc
FlushViewOfFile
Beep
GetPrivateProfileStringA
IsValidCodePage
LoadLibraryA
SizeofResource
GlobalLock
CreateMailslotA
SetFilePointer
IsProcessorFeaturePresent
UnlockFile
GetFileInformationByHandle
MultiByteToWideChar
GetProfileIntA
GetPrivateProfileStructA
GetProcessAffinityMask
CreateSemaphoreA
FormatMessageA
WriteFile
SetLastError
IsBadHugeWritePtr
GetCommandLineA
FindResourceExA
ContinueDebugEvent
WritePrivateProfileSectionA
LockResource
GlobalFlags
CopyFileA
GetEnvironmentVariableA
GetLastError
GetTempPathA
GetFullPathNameA
FreeResource
IsBadReadPtr
GetHandleInformation
GetPrivateProfileIntA
OpenEventA
UpdateResourceA
LocalSize
BeginUpdateResourceA
FlushConsoleInputBuffer
PostQueuedCompletionStatus
CreateIoCompletionPort
MulDiv
GlobalFix
ClearCommError
GlobalAddAtomA
GetProcessTimes
IsBadCodePtr
UnmapViewOfFile
GlobalFindAtomA
HeapFree
GetCommModemStatus
GetConsoleCP
GetLargestConsoleWindowSize
SleepEx
GetCommMask
HeapCreate
GetSystemDefaultLangID
LockFile
ResumeThread
GetOEMCP
GetCurrentProcess
QueryPerformanceCounter
GetVersion
SetErrorMode
LocalHandle
GetCurrentProcessId
GetVolumeInformationA
GetProfileStringA
CreateDirectoryExA
GetExitCodeThread
ClearCommBreak
GetProcessHeaps
VirtualAllocEx
GetPrivateProfileSectionNamesA
ReadProcessMemory
FindResourceA
FindClose
ResetEvent
GetUserDefaultLCID
CopyFileExA
GetNamedPipeHandleStateA
GetNamedPipeInfo
GetTickCount
GetSystemDefaultLCID
LoadLibraryExA
FindFirstChangeNotificationA
PeekNamedPipe
GetLogicalDrives
HeapValidate
GlobalWire
GetUserDefaultUILanguage
FindCloseChangeNotification
FreeLibrary
GetStdHandle
GetCPInfoExA
QueryDosDeviceA
GetCurrentThread
DefineDosDeviceA
CreateFiber
IsBadWritePtr
OpenSemaphoreA
ReadConsoleA
CommConfigDialogA
FlushInstructionCache
LocalAlloc
GetCPInfo
EraseTape
GetLocalTime
OpenFileMappingA
IsBadStringPtrA
SetFileTime
ReleaseMutex
GetModuleHandleA
CallNamedPipeA
GetProfileSectionA
FindAtomA
GetFileAttributesA
IsDebuggerPresent
WaitForMultipleObjectsEx
MoveFileA
GetLongPathNameA
GetLogicalDriveStringsA
LoadResource
InitAtomTable
GetStartupInfoA

msvcrt

srand
rand
__set_app_type
_controlfp
exit
strstr

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e07fce498d25efcf514451c4bc7d9434

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 15KB - Virtual size: 15KB

.data Size: 110KB - Virtual size: 110KB

.text
Size: 15KB - Virtual size: 15KB

.data
Size: 110KB - Virtual size: 110KB