fed39f9c1ccc002b7873686d8470f03136beab5a3d276b1b17ba26e91529830d

Sharing

Copy URL Twitter E-mail

General

Target

fed39f9c1ccc002b7873686d8470f03136beab5a3d276b1b17ba26e91529830d
Size

844KB
MD5

90a389b678a8eb55d0bccb22312efd34
SHA1

b9860fccd97bb2e6c8cecd27adcaf2b690174666
SHA256

fed39f9c1ccc002b7873686d8470f03136beab5a3d276b1b17ba26e91529830d
SHA512

99c31f0e5e86f457317c2e3f3d9e445bbf864e5fd7cdb2b19a77c86c1eaeb500aa70cc13235e650fe1fe2624efe2bac928d5b196b1b054d99f822a35861c08bc
SSDEEP

12288:Rhz6NYuJuLNmFclhblg24MyvLl901UhieKe4fFk1KSI0miAfolPsoGYPiylyn:RoYuJCcZ24dLlu1UhDcUvHVBlyn

Score

N/A

Malware Config

Signatures

Files

fed39f9c1ccc002b7873686d8470f03136beab5a3d276b1b17ba26e91529830d
.exe windows x86

3df3266139ea2718bd534b1f67347344

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
CreateSemaphoreW
TerminateJobObject
WriteConsoleInputVDMA
SetThreadPriority
GetCompressedFileSizeA
PurgeComm
GlobalUnlock
SearchPathA
VirtualAlloc
CreateConsoleScreenBuffer
GetProfileStringA
SetConsoleNlsMode
QueryPerformanceFrequency
MoveFileWithProgressW
GetConsoleInputExeNameA
LoadLibraryA
FlushConsoleInputBuffer
GetPrivateProfileSectionW
BuildCommDCBAndTimeoutsW
SetThreadLocale
SetEvent
UpdateResourceW
SetConsoleLocalEUDC
IsValidCodePage
EnumLanguageGroupLocalesW
LeaveCriticalSection
GetNumaProcessorNode
GlobalHandle
IsDBCSLeadByte
GetSystemTimeAsFileTime
GetStringTypeW
FormatMessageW
ReadConsoleInputExA
GetDiskFreeSpaceExW
HeapSize

msvcrt

??0bad_cast@@AAE@PBQBD@Z
_snprintf
qsort
??_7exception@@6B@
vwprintf
fwscanf
_wexecv
_dup2
__p___argc
_lsearch
_adj_fdivr_m64
??_Fbad_cast@@QAEXXZ
_osplatform
_get_sbh_threshold
_mbstok
_set_error_mode

inetcomm

MimeOleInetDateToFileTime
MimeEditIsSafeToRun
HrGetLastOpenFileDirectoryW
EssContentHintEncodeEx
MimeOleGetCodePageCharset
MimeOleGetBodyPropW
EssSignCertificateDecodeEx
MimeEditViewSource
MimeOleGenerateMID
EssReceiptRequestDecodeEx
MimeOleCreateBody
MimeOleGetInternat
MimeOleDecodeHeader
MimeOleGetPropW
MimeOleGetExtContentType
MimeOleCreateSecurity
MimeOleGetCertsFromThumbprints
EssKeyExchPreferenceEncodeEx
MimeOleSMimeCapGetEncAlg
MimeOleUnEscapeStringInPlace
HrGetAttachIconByFile
MimeOleGetFileInfoW

user32

RegisterClassW
DefWindowProcW
PostQuitMessage

Sections

.text
Size: 738KB - Virtual size: 737KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3df3266139ea2718bd534b1f67347344

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

inetcomm

user32

Sections

.text Size: 738KB - Virtual size: 737KB

.rdata Size: 99KB - Virtual size: 99KB

.data Size: 3KB - Virtual size: 1.5MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 988B

.text
Size: 738KB - Virtual size: 737KB

.rdata
Size: 99KB - Virtual size: 99KB

.data
Size: 3KB - Virtual size: 1.5MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 988B