af5936c95f697d5aaddc27ecdedfe6b65f3e396693562daa625637870477d3b1

Sharing

Copy URL Twitter E-mail

General

Target

af5936c95f697d5aaddc27ecdedfe6b65f3e396693562daa625637870477d3b1
Size

720KB
MD5

9e3a38e9dd10b3c440dd30d090a99ef5
SHA1

6beb31069660924ec6cdb0ce5ae5dc34acae823d
SHA256

af5936c95f697d5aaddc27ecdedfe6b65f3e396693562daa625637870477d3b1
SHA512

f5940b143f2ca38564959b524ce26dc0cddf27c656642aecee14d7b77c8cd7c9c16f6824102e5cd29fe1ab73bd57e8e0bbb974d38c1f475eeb9fcbffcf87eea3
SSDEEP

12288:3jd5QxkUJgVrwtq8ucP7piUX4cTfEmpm3KR1mmQmvmwmkA:p5QxkUJg5wtqVobA

Score

N/A

Malware Config

Signatures

Files

af5936c95f697d5aaddc27ecdedfe6b65f3e396693562daa625637870477d3b1
.exe windows x86

7681ddd981d0747d5e0b96fe76ae52e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

stlport_r50

?_Rebalance@?$_Rb_global@_N@stlp_std@@SAXPAU_Rb_tree_node_base@2@AAPAU32@@Z
?allocate@?$__debug_alloc@V?$__node_alloc@$00$0A@@stlp_std@@@stlp_std@@SAPAXI@Z
?__stl_throw_length_error@stlp_std@@YAXPBD@Z
?_M_decrement@?$_Rb_global@_N@stlp_std@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?_M_increment@?$_Rb_global@_N@stlp_std@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?_Assert@?$__stl_debug_engine@_N@stlp_std@@SAXPBD0H@Z
?deallocate@?$__debug_alloc@V?$__node_alloc@$00$0A@@stlp_std@@@stlp_std@@SAXPAXI@Z

kernel32

LCMapStringA
ReadFile
SetEndOfFile
CreateFileA
FlushFileBuffers
GetPrivateProfileIntA
WaitForSingleObject
CloseHandle
OutputDebugStringA
CreateProcessA
GetModuleFileNameA
GetTickCount
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
HeapReAlloc
VirtualAlloc
SetFilePointer
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetProcAddress
GetModuleHandleA
ExitProcess
RtlUnwind
GetLocalTime
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
GetLastError
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
WriteFile
GetStdHandle
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSection
SetHandleCount
GetFileType
Sleep
HeapSize
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree

user32

LoadStringA
CreateDialogParamA
LoadIconA
SendMessageA
MonitorFromWindow
GetMonitorInfoA
GetWindowRect
SetWindowPos
SetTimer
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
GetDlgItem
SetWindowTextA
EnumThreadWindows
PostQuitMessage
IsWindowVisible
GetClassNameA

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 632KB - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7681ddd981d0747d5e0b96fe76ae52e5

Headers

File Characteristics

Imports

stlport_r50

kernel32

user32

Sections

.text Size: 60KB - Virtual size: 59KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 8KB - Virtual size: 13KB

.rsrc Size: 632KB - Virtual size: 632KB

.text
Size: 60KB - Virtual size: 59KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 8KB - Virtual size: 13KB

.rsrc
Size: 632KB - Virtual size: 632KB