f52e99c04f299fcf0bde235b47fc3723a4521310a438c8ae8eaf070d058a3b41

Sharing

Copy URL Twitter E-mail

General

Target

f52e99c04f299fcf0bde235b47fc3723a4521310a438c8ae8eaf070d058a3b41
Size

940KB
MD5

232f9c4184886aab4a226867e61523f0
SHA1

4581a74b54746dcf4cdba431694f944bfa3adb8e
SHA256

f52e99c04f299fcf0bde235b47fc3723a4521310a438c8ae8eaf070d058a3b41
SHA512

10aa4e8b83398b61d76a6eff6c3d03934e03cb6649ed76360ae5da3591c1433394f1671c7f75153c9284a6799abf843eb45a96f88df24fb3932c50dc22c5504d
SSDEEP

3072:mrCwuBSnIqRPwkpbsiFgTtoKW2qxamnob1JiUjAfuYozgAZIt/8crCtIPcZj8/Qm:aC/SvRPwkBWT0amnoXYGZIt/8T3yb

Score

N/A

Malware Config

Signatures

Files

f52e99c04f299fcf0bde235b47fc3723a4521310a438c8ae8eaf070d058a3b41
.exe windows x86

8b6879a79581223c5594089e5d407afb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

EngEraseSurface
GdiQueryFonts
GetSystemPaletteEntries
GetWorldTransform
CombineRgn

kernel32

CloseHandle
FreeLibrary
GetCPInfoExW
GetConsoleMode
GetCurrentThread
GetFileAttributesW
GetFileSizeEx
GetPrivateProfileSectionW
GetStringTypeExW
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
LocalAlloc
LocalFree
ReadConsoleInputW
Sleep
WinExec
lstrcmpA
CopyFileA
CreateDirectoryA
DeleteVolumeMountPointA
DisableThreadLibraryCalls
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
GetWindowsDirectoryA
QueryPerformanceCounter
SetEvent
SetThreadLocale
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
GetCPInfo
ExitThread
GetLastError
ResumeThread
CreateThread
HeapFree
HeapAlloc
SetConsoleCtrlHandler
HeapCreate
HeapDestroy
VirtualFree
GetModuleHandleW
GetProcAddress
ExitProcess
GetCommandLineA
GetStartupInfoA
RaiseException
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetModuleHandleA
IsDebuggerPresent
GetACP
GetOEMCP
IsValidCodePage
HeapSize
DeleteCriticalSection
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
HeapReAlloc
WriteFile
GetStdHandle
GetModuleFileNameA
SetStdHandle
GetFileType
SetFilePointer
SetHandleCount
RtlUnwind
VirtualQuery
InterlockedExchange
LoadLibraryA
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetLocaleInfoA
GetLocaleInfoW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetTimeZoneInformation
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetFileAttributesA
ReadFile
GetConsoleCP
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringA
CompareStringW
SetEnvironmentVariableA
CreateFileA

ole32

OleBuildVersion
HWND_UserMarshal
CoQueryReleaseObject

oleaut32

VarFormat
VarUI4FromDec
VarI1FromDec
VarI1FromCy

Sections

.text
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 401KB - Virtual size: 401KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 329KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8b6879a79581223c5594089e5d407afb

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

ole32

oleaut32

Sections

.text Size: 208KB - Virtual size: 207KB

.rdata Size: 401KB - Virtual size: 401KB

.data Size: 329KB - Virtual size: 341KB

.text
Size: 208KB - Virtual size: 207KB

.rdata
Size: 401KB - Virtual size: 401KB

.data
Size: 329KB - Virtual size: 341KB