07d37eab3b4ab2b1b86886acc47d582e4c27c7d0c4ad70905e51da7094ea4f5b

Sharing

Copy URL Twitter E-mail

General

Target

07d37eab3b4ab2b1b86886acc47d582e4c27c7d0c4ad70905e51da7094ea4f5b
Size

47KB
MD5

25310268f7472f6bd4e1620acb6c1bcb
SHA1

94c64df0fef2200481b03a93ee4040a98459e847
SHA256

07d37eab3b4ab2b1b86886acc47d582e4c27c7d0c4ad70905e51da7094ea4f5b
SHA512

68570e82a5a318b4021e7e9789ea784723974fc46ce8b5687389e56098bbbd80ce9ed788e08e48f7a78d17ef1b15f0283503e2394e2d78bc4cbeab46cced25ae
SSDEEP

768:xcMxR/9zb4zWRHCjICvSJx/HBZbY8jUe9HaSQW87/D6cY2qCNmbBb/gaMNmVj7iI:xcMxPzgWRHCZvSDDb9HaSQWu/DrY2qCS

Score

N/A

Malware Config

Signatures

Files

07d37eab3b4ab2b1b86886acc47d582e4c27c7d0c4ad70905e51da7094ea4f5b
.exe windows x86

ab20503f1f8bfb55aa709f120d5d25da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharUpperW
CharLowerW
LoadStringW

secur32

GetUserNameExW

ws2_32

WSACleanup

shlwapi

StrStrW
StrStrIW
StrChrW
StrChrIW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

msvcrt

fflush
wcstol
wcstoul
wcstod
_except_handler3
_fileno
exit
_errno
fprintf
??3@YAXPAX@Z
_ultow
_vsnwprintf
__CxxFrameHandler
_iob
wcstok
_c_exit
_exit
_XcptFilter
__winitenv
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
??2@YAPAXI@Z
_cexit
__p__commode
__p__fmode
__set_app_type
_controlfp
_get_osfhandle

advapi32

AdjustTokenPrivileges
OpenProcessToken
LookupPrivilegeValueW
GetLengthSid
CopySid
LookupPrivilegeDisplayNameW
LookupPrivilegeNameW
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
IsValidSid
GetTokenInformation
LookupAccountSidW

kernel32

GetSystemDirectoryW
LoadLibraryW
GetProcAddress
FreeLibrary
HeapReAlloc
HeapFree
WriteConsoleW
HeapSize
HeapAlloc
GetProcessHeap
HeapValidate
WideCharToMultiByte
ExitProcess
GetThreadLocale
CompareStringW
lstrlenW
GetFileType
GetStdHandle
GetConsoleMode
VerSetConditionMask
VerifyVersionInfoW
FormatMessageW
LocalFree
GetCurrentProcess
CloseHandle
SetLastError
GetLastError
GetConsoleOutputCP
GetModuleFileNameW
GetTimeFormatW
FileTimeToSystemTime
TerminateProcess
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
CompareStringA

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab20503f1f8bfb55aa709f120d5d25da

Headers

DLL Characteristics

File Characteristics

Imports

user32

secur32

ws2_32

shlwapi

version

msvcrt

advapi32

kernel32

Sections

.text Size: 33KB - Virtual size: 32KB

.data Size: 512B - Virtual size: 344B

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 33KB - Virtual size: 32KB

.data
Size: 512B - Virtual size: 344B

.rsrc
Size: 12KB - Virtual size: 12KB