77779092536f4f8c94d199a73770f1a3f31ea8f5ce71be2c359da44af30c1e7f

Sharing

Copy URL Twitter E-mail

General

Target

77779092536f4f8c94d199a73770f1a3f31ea8f5ce71be2c359da44af30c1e7f
Size

25KB
MD5

50cfda3247c94846283e4c4bf25652d4
SHA1

18a739b294a2fc6d1439d44687dbcf9e5ebb0653
SHA256

77779092536f4f8c94d199a73770f1a3f31ea8f5ce71be2c359da44af30c1e7f
SHA512

b86e8e942522639eefaee3c90389cf8e7b2331fa2820adf42ecd80a92b8f189d0a84752c70bcb19f0cc6d1df4d59b1299e65235e399bce87c8be48f73c12041e
SSDEEP

384:7Ttn3RvZeeQWmdEtaXZxABKXJ0BWa3DfBrjK5oCeMdD1PXIme/IHOtrOgfG:vtnBIeedEcJJXJ4hl65/eEJXIAyqgfG

Score

N/A

Malware Config

Signatures

Files

77779092536f4f8c94d199a73770f1a3f31ea8f5ce71be2c359da44af30c1e7f
.exe windows x86

f12ba92c3abd0add4b515b6ba2e698c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyA
RegCloseKey
RegCreateKeyA

ntdll

NtCreateKey

kernel32

GetTickCount
LocalReAlloc
GetSystemTimeAsFileTime
IsBadReadPtr
GetProcAddress
DisableThreadLibraryCalls
IsBadCodePtr
LocalAlloc
Sleep
GetCurrentProcess
VirtualFree
GetModuleHandleA
TerminateProcess
LocalFree
GetVersionExA
UnhandledExceptionFilter
LoadLibraryA
FreeLibrary
GetCurrentThreadId
GetCurrentProcessId
SetUnhandledExceptionFilter
VirtualAlloc
GetModuleFileNameA
GetSystemInfo
QueryPerformanceCounter

msvcrt

__CxxFrameHandler
_adjust_fdiv
__dllonexit
fflush
_CxxThrowException
exp
_except_handler3
_CIsqrt
fopen
fseek
_CIpow
_initterm
sprintf
free
ftell
_onexit
fclose
_purecall
_CIexp
fwrite
malloc

ddraw

D3DParseUnknownCommand
DDInternalLock
ReleaseDDThreadLock
AcquireDDThreadLock
DDInternalUnlock
CompleteCreateSysmemSurface

user32

IntersectRect
IsRectEmpty

ws2_32

WSAGetLastError

dhcpcsvc

McastApiStartup

Sections

.textbss
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f12ba92c3abd0add4b515b6ba2e698c8

Headers

File Characteristics

Imports

advapi32

ntdll

kernel32

msvcrt

ddraw

user32

ws2_32

dhcpcsvc

Sections

.textbss Size: - Virtual size: 96KB

.text Size: 512B - Virtual size: 436B

.idata Size: 22KB - Virtual size: 22KB

.rdata Size: 512B - Virtual size: 32B

.data Size: 512B - Virtual size: 216B

.textbss
Size: - Virtual size: 96KB

.text
Size: 512B - Virtual size: 436B

.idata
Size: 22KB - Virtual size: 22KB

.rdata
Size: 512B - Virtual size: 32B

.data
Size: 512B - Virtual size: 216B