d9af1b606268b66508ea114e85b7c7e406fcadc978236e0f77215b8aa67911ea

Sharing

Copy URL Twitter E-mail

General

Target

d9af1b606268b66508ea114e85b7c7e406fcadc978236e0f77215b8aa67911ea
Size

148KB
MD5

cbc6b1b1c76a42a8356771f46bbd1dc7
SHA1

82039652507902879d18d32604a8ecb9d8654db6
SHA256

d9af1b606268b66508ea114e85b7c7e406fcadc978236e0f77215b8aa67911ea
SHA512

59f4f670309ed13fd782b9c891e15af06966cae3b9c622a52335fc00e22cf32a62a0be61afe8cd1c659f5597fd1119ed472ed3872c734aa5c44fca08ef9c74f2
SSDEEP

3072:gxgC+1shzFMxlFmbCIDVgLY1uR1KLaEmCwe/z5v:e+1WxOlQbCIDVgU1+sm+zJ

Score

N/A

Malware Config

Signatures

Files

d9af1b606268b66508ea114e85b7c7e406fcadc978236e0f77215b8aa67911ea
.exe windows x86

91284deea1a6fedf08f0df3f867dabec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CreateFileA
EscapeCommFunction
ExitProcess
GetACP
GetCPInfo
GetCommandLineA
GetCurrentThreadId
GetEnvironmentStrings
GetFileType
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetPrivateProfileSectionNamesW
GetProcAddress
GetProcessHeap
GetProfileStringA
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetTempFileNameA
GetVersion
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapFree
LoadLibraryA
LocalSize
RaiseException
RtlUnwind
SetConsoleCtrlHandler
SetConsoleScreenBufferSize
SetFileApisToANSI
SetFilePointer
SetHandleCount
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WriteFile

user32

EnumThreadWindows
GetCursorPos
MessageBoxA
wsprintfA

Exports

Exports

__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

91284deea1a6fedf08f0df3f867dabec

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 30KB - Virtual size: 32KB

.data Size: 11KB - Virtual size: 16KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 1KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 95KB - Virtual size: 95KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 30KB - Virtual size: 32KB

.data
Size: 11KB - Virtual size: 16KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 1KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 95KB - Virtual size: 95KB

.reloc
Size: 7KB - Virtual size: 7KB