a38efa2819de211a64372fae9c470364386afc0d4e927fc00482b6e30aa7bb2a

Sharing

Copy URL Twitter E-mail

General

Target

a38efa2819de211a64372fae9c470364386afc0d4e927fc00482b6e30aa7bb2a
Size

41KB
MD5

c286aa267a08147264b4c5d27629add5
SHA1

f8a7b55a84b419edfeca0ede1445eb94e01ea0d9
SHA256

a38efa2819de211a64372fae9c470364386afc0d4e927fc00482b6e30aa7bb2a
SHA512

81d68792c133f50500e775ace90f17738e2a0ca953c14fab0903a1a842727ace741eabbfb91e3c2f06c0404772131e33bed797afbc04f883463fafc2491031ea
SSDEEP

768:VE7ZTZRtVMhRYvJ2+Byn8prRO5QTOUtgFfrHms/72NDSsFF/tnx:VE7Pm4vJ2W1prRsQjgFf6ssSM/x

Score

N/A

Malware Config

Signatures

Files

a38efa2819de211a64372fae9c470364386afc0d4e927fc00482b6e30aa7bb2a
.exe windows x86

cb54dab186503ce002f6edbfee3fdea7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GlobalAlloc
GetCPInfoExA
GetVDMCurrentDirectories
CreateJobObjectA
GetQueuedCompletionStatus
GetComputerNameA
CallNamedPipeW
RemoveDirectoryA
CompareStringA
SetLastError
LoadLibraryExW
OpenFileMappingW
GetDriveTypeW
FatalAppExitA
GetACP
PurgeComm
GetSystemDefaultLangID
IsProcessorFeaturePresent
GlobalLock
EnumSystemCodePagesW
LoadLibraryA
FindFirstVolumeW
DeleteFiber
GetThreadPriority
ReadConsoleInputExA
SetComPlusPackageInstallStatus
MapUserPhysicalPagesScatter
GetConsoleFontInfo
lstrlenW
EnumUILanguagesW
GetNumaProcessorNode
SetConsoleNlsMode
Process32NextW
GetLocaleInfoW
HeapValidate
GetOEMCP
GetWindowsDirectoryA
DeleteFileA

msvcrt40

??_Elogic_error@@UAEPAXI@Z
_mbsncat
?good@ios@@QBEHXZ
_wsearchenv
??0Iostream_init@@QAE@XZ
?sync@strstreambuf@@UAEHXZ
strtod
??1ostream_withassign@@UAE@XZ
??4istream_withassign@@QAEAAVistream@@ABV1@@Z
_mbcjistojms
_toupper
_ismbcupper
_fdopen
_endthreadex
_ismbbkana
??0strstreambuf@@QAE@PADH0@Z
??_8fstream@@7Bostream@@@
_sys_errlist
_ultoa
??1ifstream@@UAE@XZ
atof
_kbhit
_ismbbalpha
_yn
_open
exit
?stossc@streambuf@@QAEXXZ
fgetwc
??0ofstream@@QAE@XZ
??6ostream@@QAEAAV0@G@Z
?set_new_handler@@YAP6AXXZP6AXXZ@Z
__p__pwctype
__argv
_lseeki64
_splitpath
?unlock@streambuf@@QAEXXZ
_ismbbkalnum
_pipe

msvcrt

__initenv
_ismbbpunct
_filbuf
_wexecle
??4bad_cast@@QAEAAV0@ABV0@@Z
_wasctime
getenv
_gmtime64
putc
_fputchar
??0bad_cast@@AAE@PBQBD@Z
__p__iob
_outpw
_ismbcalpha
_mbbtombc
_spawnve
_localtime64
_mbsrchr
_safe_fprem1
__set_app_type
memcmp
_wspawnlp
wcsspn
??0bad_cast@@QAE@ABQBD@Z
??0__non_rtti_object@@QAE@PBD@Z
_CIlog
_strtime
??_Ebad_cast@@UAEPAXI@Z
exit
__p___argv
_cscanf
_mbctoupper
_CIfmod
isleadbyte
__getmainargs
??0bad_typeid@@QAE@PBD@Z
_heapchk
_wspawnle
__p__commode

olecli32

DefCreateFromFile
DibGetData
OleIsDcMeta
MfQueryBounds
SetNetName
DefCreateInvisible
LeSaveToStream
OleCreateLinkFromFile
ErrExecute
OleQueryReleaseStatus
OleClose
BmCopy
OleLockServer
MfRelease
ErrClose
OleQueryOpen
ErrSetTargetDevice
OleSavedClientDoc
ErrGetUpdateOptions
OleDelete
PbCopyToClipboard
MfEnumFormat
LeQueryType
LeGetData
OleRelease

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb54dab186503ce002f6edbfee3fdea7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt40

msvcrt

olecli32

Sections

.text Size: 30KB - Virtual size: 30KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 2KB - Virtual size: 23KB

.rsrc Size: 1024B - Virtual size: 1024B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 30KB - Virtual size: 30KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 2KB - Virtual size: 23KB

.rsrc
Size: 1024B - Virtual size: 1024B

.reloc
Size: 1KB - Virtual size: 1KB