fbe2ee2945f4b8884649aa4546271e0f381fafad4cb6bb2d9ef656d84db9e358

Sharing

Copy URL Twitter E-mail

General

Target

fbe2ee2945f4b8884649aa4546271e0f381fafad4cb6bb2d9ef656d84db9e358
Size

139KB
MD5

7e4eb2aee0d17f822d397ecf2379745e
SHA1

8c1d6de0105a689c764d2141c76f6454213875a4
SHA256

fbe2ee2945f4b8884649aa4546271e0f381fafad4cb6bb2d9ef656d84db9e358
SHA512

f81b634fc5b3b7ee0ff57d2b5c73d57251ffc1ab2e0ffcaee80516b61235f5c9caa80f70cc4f9d71edfbe900e7b5f9510d770a368f7a1dac98f5f29c6d6a28af
SSDEEP

3072:7mpIev6EFGLObwce3eykx4KoTehB7VUv6h+D3WfR16H3h05B0V:xu6ESObR5yxTef7ViGfbiUB+

Score

N/A

Malware Config

Signatures

Files

fbe2ee2945f4b8884649aa4546271e0f381fafad4cb6bb2d9ef656d84db9e358
.exe windows x86

7a7dc815a6240bcfdd24edf64c4d804c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

HBRUSH_UserFree
OleCreateDefaultHandler
CoGetDefaultContext
CoQueryAuthenticationServices
ComPs_NdrDllGetClassObject
OleNoteObjectVisible
CoAllowSetForegroundWindow
CoLoadLibrary
CoPushServiceDomain
CoFreeUnusedLibrariesEx
HMETAFILE_UserMarshal
HMENU_UserSize
HPALETTE_UserFree
FmtIdToPropStgName
HGLOBAL_UserMarshal
CoQueryProxyBlanket
CreateItemMoniker
CoInitializeSecurity
CoGetObject
CoGetMarshalSizeMax
CoLockObjectExternal
OleRegEnumFormatEtc
WriteClassStm
OleConvertIStorageToOLESTREAMEx
CoGetInterceptorFromTypeInfo
SNB_UserFree
OleBuildVersion
RevokeDragDrop
CoSetProxyBlanket
OleGetAutoConvert
OleQueryCreateFromData
HWND_UserMarshal
DllGetClassObject

kernel32

PeekConsoleInputW
GetLocaleInfoW
Process32NextW
GetFullPathNameW
GetModuleHandleW
LoadLibraryW
DeleteFiber
SetPriorityClass
FlushConsoleInputBuffer
LocalHandle
VirtualAllocEx
GetCurrentThread
GetSystemDefaultUILanguage
Heap32Next
GetUserDefaultUILanguage

dssec

DllCanUnloadNow
DSCreateISecurityInfoObject
DllGetClassObject
DSCreateSecurityPage
DSCreateISecurityInfoObjectEx
DSEditSecurity

perfctrs

CollectNbfPerformanceData
CloseDhcpPerformanceData
OpenDhcpPerformanceData
OpenNbfPerformanceData
CloseTcpIpPerformanceData
OpenNWNBPerformanceData
CollectNWNBPerformanceData
OpenTcpIpPerformanceData

faultrep

ReportHang
AddERExcludedApplicationA
AddERExcludedApplicationW
ReportFault

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a7dc815a6240bcfdd24edf64c4d804c

Headers

File Characteristics

Imports

ole32

kernel32

dssec

perfctrs

faultrep

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 53KB - Virtual size: 52KB

.data Size: 22KB - Virtual size: 21KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 53KB - Virtual size: 52KB

.data
Size: 22KB - Virtual size: 21KB

.rsrc
Size: 10KB - Virtual size: 9KB