85f8a8394a5aeeb295dafbc290e46dbe286c7fda16015a709db49e0925323671

General

Target

85f8a8394a5aeeb295dafbc290e46dbe286c7fda16015a709db49e0925323671
Size

385KB
MD5

a6c6fb957ee0c604df729f25f334b036
SHA1

7b054ac745eca0900a526ead36e70fe6fc58bc37
SHA256

85f8a8394a5aeeb295dafbc290e46dbe286c7fda16015a709db49e0925323671
SHA512

dfb13be89e01b78a0fa5771f2989cde6feff22f344247ae76441f7c4a9d100650ee0216470963e84ed2db95cc0b7339d4af8ea552c3c37c13e03ee71e0071302
SSDEEP

12288:50kSn6S3DUEgqnZg72ydNjfDGtAiVe1ncU0rbx:50bnh3DjgQZg7PjfDGfAkrb

Score

N/A

Malware Config

Signatures

Files

85f8a8394a5aeeb295dafbc290e46dbe286c7fda16015a709db49e0925323671
.exe windows x86

92391192ac7a91ee4f82b07f036b4d44

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

loadperf

LoadPerfCounterTextStringsW

mgmtapi

SnmpMgrTrapListen
SnmpMgrCtl
SnmpMgrRequest
SnmpMgrClose
SnmpMgrOpen

kernel32

GetEnvironmentStringsW
HeapSize
InterlockedExchange
RtlUnwind
IsBadWritePtr
HeapReAlloc
LoadLibraryA
GetSystemTimeAsFileTime
GetSystemInfo
IsProcessorFeaturePresent
VirtualProtect
GetModuleHandleA
GetVersionExA
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
GetLastError
LCMapStringW
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
GetModuleFileNameW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
HeapAlloc
VirtualAlloc
VirtualQuery
GetLocaleInfoA
GetCPInfo
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId

Exports

Exports

Mightusual
whileHer

Sections

.text
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 97KB - Virtual size: 494KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

92391192ac7a91ee4f82b07f036b4d44

Headers

File Characteristics

Imports

loadperf

mgmtapi

kernel32

Exports

Exports

Sections

.text Size: 176KB - Virtual size: 175KB

.rdata Size: 108KB - Virtual size: 108KB

.data Size: 97KB - Virtual size: 494KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 176KB - Virtual size: 175KB

.rdata
Size: 108KB - Virtual size: 108KB

.data
Size: 97KB - Virtual size: 494KB

.rsrc
Size: 2KB - Virtual size: 1KB