bc0e3cfe42e63383bec23a6bae486f4b89e3132210344757a5e32428aa7d18ca

Sharing

Copy URL Twitter E-mail

General

Target

bc0e3cfe42e63383bec23a6bae486f4b89e3132210344757a5e32428aa7d18ca
Size

404KB
MD5

aa9d6bc51230d0553d9747de09c325fd
SHA1

b9bbe48374abe7e7afb02194b83487bd75030a50
SHA256

bc0e3cfe42e63383bec23a6bae486f4b89e3132210344757a5e32428aa7d18ca
SHA512

f31e9b7791ecf126ee633a1b32b648ec49495268fce5574dddd0045bc0c0cde1c2c370c3146497d984264d9dcf29d1684527dfea411bbbe43dc43ea75c7e10fa
SSDEEP

12288:CQQy4iN417NuMezayPQjlPVwNLu8g2IwOgA57n2S:CybN4rJezayYZEBgV75rz

Score

N/A

Malware Config

Signatures

Files

bc0e3cfe42e63383bec23a6bae486f4b89e3132210344757a5e32428aa7d18ca
.exe windows x86

747da48324d5116c2d951d47fef3eb9d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CreateStreamOnHGlobal
CoTaskMemFree

kernel32

GetVersionExA
GetComputerNameA
GetCurrentDirectoryA
CloseHandle
CreateFileA
CreateFileMappingA
CreateToolhelp32Snapshot
ExitProcess
FindClose
FindFirstFileA
lstrlenW
lstrlenA
lstrcpyA
lstrcmpiA
lstrcatA
WriteFile
WideCharToMultiByte
UnmapViewOfFile
Sleep
Process32Next
Process32First
OpenProcess
MultiByteToWideChar
MapViewOfFile
LocalFree
LocalAlloc
LoadLibraryA
GlobalMemoryStatus
GlobalFree
GlobalAlloc
GetWindowsDirectoryA
GetVolumeInformationA
GetDiskFreeSpaceA
GetTempPathA
GetSystemDirectoryA
GetProcAddress
GetPrivateProfileStringA
GetPrivateProfileSectionNamesA
GetPrivateProfileIntA
GetModuleFileNameA
GetLogicalDrives
GetLocaleInfoA
GetLocalTime
GetFileSize
GetDriveTypeA
FindNextFileA

user32

ReleaseDC
GetDC
wsprintfA

oleaut32

SafeArrayUnaccessData
SafeArrayCreateVector
SafeArrayAccessData

advapi32

RegEnumKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegOpenKeyA
GetUserNameA
RegEnumValueA

shlwapi

StrStrIA

shell32

ShellExecuteA

wsock32

socket
send
recv
gethostname
connect
closesocket
WSAStartup

ws2_32

WSAIoctl

rasapi32

RasGetEntryPropertiesA
RasEnumEntriesA
RasGetEntryDialParamsA

gdi32

GetDeviceCaps

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 385KB - Virtual size: 561KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

747da48324d5116c2d951d47fef3eb9d

Headers

File Characteristics

Imports

ole32

kernel32

user32

oleaut32

advapi32

shlwapi

shell32

wsock32

ws2_32

rasapi32

gdi32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 385KB - Virtual size: 561KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 385KB - Virtual size: 561KB

.rsrc
Size: 5KB - Virtual size: 4KB