Downloads[.]7z

Sharing

Copy URL

Twitter E-mail

General

Target

Downloads.7z
Size

50KB
MD5

b15728b8a0ebfa5d9eabe0be80703f69
SHA1

3bce548e55a70b13f610eb2b9b12735326bcf61d
SHA256

171e929a2ae1e25063d118009f4ff96e538bd7bbba9e56d031063235966ab67e
SHA512

63f222457b9d04ecad78e4d26a37496098d3beb2d41c3d72583bc8e90c69907cbbf0eb440e4b6241c96f76123e2b8eed5d06b9cfd78c50fc694d85e351c47a52
SSDEEP

1536:DMF4dFffPff/EAQVNjdpMH1PPJFBd17Bgwm2HH:oF4bZ+NjnuPPD1tgwrn

Score

N/A

Malware Config

Signatures

Files

Downloads.7z
.7z

Password: infected
Scan.lnk
.lnk
torpat/micropublishing.dll
.dll regsvr32 windows x64

b7571113e0fb0198b256a5d78d0fdfcb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeConsole
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
MultiByteToWideChar
QueryPerformanceCounter
RtlAddFunctionTable
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
lstrlenA

msvcrt

__dllonexit
__iob_func
_amsg_exit
_initterm
_lock
_onexit
_unlock
_wtoi
abort
calloc
free
fwrite
malloc
memcpy
signal
strcmp
strlen
strncmp
vfprintf

user32

CreateWindowExA
DefWindowProcA
DispatchMessageA
GetMessageA
LoadCursorA
LoadIconA
MessageBoxA
PostQuitMessage
RegisterClassExA
ShowWindow
TranslateMessage

ole32

CoLoadLibrary

oleaut32

SysAllocStringLen
SysFreeString

Exports

Exports

Abbb
DllGetClassObject
DllRegisterServer
PluginInit

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 532B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/31
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/45
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/57
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/70
Size: 512B - Virtual size: 302B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/81
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/92
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
torpat/sueJl.cmd

Sharing

General

Malware Config

Signatures

Files

Password: infected

b7571113e0fb0198b256a5d78d0fdfcb

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 37KB - Virtual size: 37KB

.data Size: 512B - Virtual size: 112B

.rdata Size: 19KB - Virtual size: 18KB

.pdata Size: 1024B - Virtual size: 576B

.xdata Size: 1024B - Virtual size: 532B

.bss Size: - Virtual size: 2KB

.edata Size: 512B - Virtual size: 146B

.idata Size: 2KB - Virtual size: 2KB

.CRT Size: 512B - Virtual size: 88B

.tls Size: 512B - Virtual size: 80B

.reloc Size: 512B - Virtual size: 60B

/4 Size: 1024B - Virtual size: 784B

/19 Size: 38KB - Virtual size: 38KB

/31 Size: 6KB - Virtual size: 5KB

/45 Size: 5KB - Virtual size: 5KB

/57 Size: 3KB - Virtual size: 2KB

/70 Size: 512B - Virtual size: 302B

/81 Size: 12KB - Virtual size: 11KB

/92 Size: 1KB - Virtual size: 1KB

.text
Size: 37KB - Virtual size: 37KB

.data
Size: 512B - Virtual size: 112B

.rdata
Size: 19KB - Virtual size: 18KB

.pdata
Size: 1024B - Virtual size: 576B

.xdata
Size: 1024B - Virtual size: 532B

.bss
Size: - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 146B

.idata
Size: 2KB - Virtual size: 2KB

.CRT
Size: 512B - Virtual size: 88B

.tls
Size: 512B - Virtual size: 80B

.reloc
Size: 512B - Virtual size: 60B

/4
Size: 1024B - Virtual size: 784B

/19
Size: 38KB - Virtual size: 38KB

/31
Size: 6KB - Virtual size: 5KB

/45
Size: 5KB - Virtual size: 5KB

/57
Size: 3KB - Virtual size: 2KB

/70
Size: 512B - Virtual size: 302B

/81
Size: 12KB - Virtual size: 11KB

/92
Size: 1KB - Virtual size: 1KB