db02e523df53e6467832dcf2719e889c2be8ff1c343fb2746f14b548585cebf3

Sharing

Copy URL Twitter E-mail

General

Target

db02e523df53e6467832dcf2719e889c2be8ff1c343fb2746f14b548585cebf3
Size

122KB
MD5

00980d5ee82f1f3c9ffe7ad89ff65831
SHA1

d1ac2d257c28a1ce2854667558b97f5fc001a7e8
SHA256

db02e523df53e6467832dcf2719e889c2be8ff1c343fb2746f14b548585cebf3
SHA512

661537d2a99b5fb9619f5766ce47e36f4c34da967c46243d8988b5eb03a6050cbe9e35ad45303e00283fb25adabf60e65fc58ef122bca1671d62c5a5b9bf014a
SSDEEP

3072:gAus7nHNLskvjqrdFKyswVDRm2zD+SN/JAlgT9BT:Z7HWEidJRm2zDfJAlgT9BT

Score

N/A

Malware Config

Signatures

Files

db02e523df53e6467832dcf2719e889c2be8ff1c343fb2746f14b548585cebf3
.exe windows x86

0c952052be0ce60277113f5855ad26fc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetModuleHandleA
CreateDirectoryA
SetFilePointer
GetSystemDirectoryA
HeapFree
FreeLibraryAndExitThread
CreateFileA
GetSystemInfo
OutputDebugStringA
GetCurrentThread
TerminateThread
GlobalReAlloc
CreateProcessA
GetFileType
WriteConsoleW
GlobalAlloc
SetUnhandledExceptionFilter
GetProcAddress
LoadLibraryA
CreateDirectoryW
LoadLibraryW
GetWindowsDirectoryW
GetTimeFormatW
GetCurrentThreadId
IsBadWritePtr
GetLastError
lstrcatA
ExitProcess
MapViewOfFile
GetProcAddress
QueryPerformanceCounter
FindNextFileW
CreateMutexW

tapi32

lineOpenW
lineSetupConference
lineDevSpecificFeature
lineAddToConference

msvcrt

memcpy
_acmdln
atoi
memset
strcpy
isupper
wcsncmp
_wcsnicmp
wcsncpy
__wgetmainargs
atoi
__p__commode
towupper
_wtoi
strncpy
_vsnprintf
_iob

user32

DeleteMenu
GetMenuItemCount
ReleaseDC
OpenClipboard
GetKeyState
MsgWaitForMultipleObjects
LoadCursorW
GetDlgItem
SystemParametersInfoW
ShowWindow
LoadAcceleratorsW
SetScrollPos
DispatchMessageA
RemoveMenu
GetWindowPlacement
PostQuitMessage
DialogBoxParamW
LoadStringW
LoadMenuA
GetAsyncKeyState
RegisterMessagePumpHook
SetCapture
InvalidateRect

gdi32

CreateFontIndirectA
SelectObject
SetMapMode
SetPixel
SetTextColor
PatBlt
CreateSolidBrush
CreateCompatibleDC
DeleteDC
BitBlt
SelectPalette
SaveDC
SetBkColor
CreatePen
GetDeviceCaps

Exports

Exports

XnxcxSpmhvz
HehWyajwwu

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

ttvv
Size: 512B - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 50B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c952052be0ce60277113f5855ad26fc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

tapi32

msvcrt

user32

gdi32

Exports

Exports

Sections

.text Size: 30KB - Virtual size: 30KB

.rdata Size: 30KB - Virtual size: 29KB

ttvv Size: 512B - Virtual size: 277B

.data Size: 28KB - Virtual size: 27KB

.rsrc Size: 31KB - Virtual size: 31KB

.reloc Size: 512B - Virtual size: 50B

.text
Size: 30KB - Virtual size: 30KB

.rdata
Size: 30KB - Virtual size: 29KB

ttvv
Size: 512B - Virtual size: 277B

.data
Size: 28KB - Virtual size: 27KB

.rsrc
Size: 31KB - Virtual size: 31KB

.reloc
Size: 512B - Virtual size: 50B