e592afce0d3ecaf92079b39f5365a118c198ca5dc5c0645d4109259055c32ac7

Sharing

Copy URL

Twitter E-mail

General

Target

e592afce0d3ecaf92079b39f5365a118c198ca5dc5c0645d4109259055c32ac7
Size

47KB
MD5

66a7db04f95c9f43d21fe438a7174274
SHA1

51fe449ad5442aa12bc2ab61d2f85c5a6f65fa7b
SHA256

e592afce0d3ecaf92079b39f5365a118c198ca5dc5c0645d4109259055c32ac7
SHA512

6aeeae26fc9bd14a68c137295b4365c03240fce82c7d215a72a30b3ac415b7573242fb253467f12d4a1995ed246f21268eaf1e6876f1d525ca46f35a66769ae4
SSDEEP

768:tZ6MO3xhp4gCSgzy0PCvavUKgpVJMpMbmgTsX5xbnaV7QbyxKZ1Z4kZ9f:tZ6zBhp4gCPtPCgK5MpJssJxmVQzzZ9f

Score

N/A

Malware Config

Signatures

Files

e592afce0d3ecaf92079b39f5365a118c198ca5dc5c0645d4109259055c32ac7
.exe windows x86

bac9005d3a9a9cb7936ca9dd39d2e78f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

SignalObjectAndWait
GetLocaleInfoA
ResumeThread
WriteConsoleInputA
AllocConsole
GetConsoleMode
IsBadCodePtr
DeleteTimerQueue
FindNextFileA
HeapSetInformation
RequestWakeupLatency
GlobalCompact
GetNumberOfConsoleMouseButtons
GetConsoleInputWaitHandle
GetConsoleCommandHistoryA
VirtualAlloc
GetLogicalDriveStringsA
ReadConsoleA
GetCommandLineA
OpenWaitableTimerA
LockFileEx
SetFileAttributesA
QueryMemoryResourceNotification
GetVolumeInformationA
GetDefaultCommConfigA
GetSystemDirectoryA
lstrcpynA
GetCurrentProcessId
ReadFileEx
GetExitCodeThread
GetShortPathNameA
GetSystemWindowsDirectoryA
GetModuleFileNameA
QueryPerformanceFrequency
FindClose
IsProcessorFeaturePresent
EnumResourceNamesA
UnregisterWait
GetStdHandle
ReadConsoleOutputA
LockResource
OpenSemaphoreA
GetAtomNameA
SetEndOfFile
SetFileAttributesA
GetProcessPriorityBoost
GetVolumePathNameA
SetTapePosition
GetVersion
GetThreadLocale
CloseHandle
PeekConsoleInputA
GetCommModemStatus
GetFileTime
SetConsoleCursorMode
GetDefaultCommConfigA
ClearCommError
WriteConsoleOutputAttribute
CreateDirectoryExA
GetModuleHandleA
GetTickCount
GetDiskFreeSpaceA
_hread
TerminateJobObject
GetProcessIoCounters
SetMessageWaitingIndicator
ChangeTimerQueueTimer
GetVersion
GetDllDirectoryA
GlobalWire
CopyFileExA
WaitForSingleObject
TransmitCommChar
GetStartupInfoA
OpenMutexA
GetPriorityClass
GetProcessId
Heap32ListFirst
TransmitCommChar
WaitForSingleObject
UnregisterWaitEx
VirtualAlloc
BuildCommDCBAndTimeoutsA
GetWindowsDirectoryA
FindFirstFileExW
WriteConsoleOutputCharacterA
GlobalFree
AddAtomA
OpenEventA
GetSystemTimes
HeapCreate
RegisterWaitForSingleObject
SetConsoleActiveScreenBuffer
QueueUserWorkItem
GetSystemDefaultLCID
FlushViewOfFile
lstrlenA
WriteProcessMemory
GetCommState
LocalCompact
DisconnectNamedPipe
GetProcessTimes
LZInit

advapi32

InitializeSid

ntdll

RtlGetLastWin32Error

Sections

CODE
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bac9005d3a9a9cb7936ca9dd39d2e78f

Headers

File Characteristics

Imports

kernel32

advapi32

ntdll

Sections

CODE Size: 10KB - Virtual size: 12KB

DATA Size: 8KB - Virtual size: 8KB

BSS Size: - Virtual size: 4KB

.idata Size: 3KB - Virtual size: 4KB

.tls Size: - Virtual size: 4KB

.rsrc Size: 23KB - Virtual size: 24KB

.reloc Size: 2KB - Virtual size: 4KB

CODE
Size: 10KB - Virtual size: 12KB

DATA
Size: 8KB - Virtual size: 8KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 3KB - Virtual size: 4KB

.tls
Size: - Virtual size: 4KB

.rsrc
Size: 23KB - Virtual size: 24KB

.reloc
Size: 2KB - Virtual size: 4KB