b071be574eef4a9973911dbdd93363a1c8229ae0c9b71563e79eb65da76dbc15

General

Target

b071be574eef4a9973911dbdd93363a1c8229ae0c9b71563e79eb65da76dbc15
Size

216KB
MD5

66e106a553a4c4ae3efa59bf902b2b4f
SHA1

40d80a51a0f4b1219d87c6e80a8def2fa1dc59ff
SHA256

b071be574eef4a9973911dbdd93363a1c8229ae0c9b71563e79eb65da76dbc15
SHA512

7817a2861a0425a2348780b7280e4b06e1141ae013223f25542c9a53e966e00ad2f256aef07a327d9c8fe3953c906c3cfd01421ae9e5e28b3584ea9496fcf0a7
SSDEEP

3072:7+TlT2Nd39eLT+w2EC4j0oYb8e+jmbH7EMOjxxHr6xxr6GVy5eC4N:So9ALXqo1jmUZxL6xQGQ5eC4N

Score

N/A

Malware Config

Signatures

Files

b071be574eef4a9973911dbdd93363a1c8229ae0c9b71563e79eb65da76dbc15
.exe windows x86

98e4cd6c930b7df1fe1930ec1de28afb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gngmb

GmuxIsGraphActive
GmuxProcessData
GmuxTrace
GmuxQuery
GmuxDestroy
GmuxEndTransaction
GmuxCreate

msvcrt

_XcptFilter
exit
_exit
strlen
__getmainargs
_initterm
memcpy
_snprintf
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__dllonexit
??2@YAPAXI@Z
??3@YAXPAX@Z
sscanf
memset
__setusermatherr
_adjust_fdiv
_acmdln
_onexit

kernel32

OpenFileMappingA
GetStartupInfoA
GetModuleHandleA
CloseHandle
UnmapViewOfFile
GetCommandLineA
GetCurrentThreadId
GetTickCount
CreateFileMappingA
MapViewOfFile

user32

CreateWindowExA
IsWindow
RegisterClassExA
DispatchMessageA
TranslateMessage
GetMessageA
SetTimer
RegisterWindowMessageA
DefWindowProcA
SendMessageTimeoutA
PostQuitMessage
KillTimer
SendMessageA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tc
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

98e4cd6c930b7df1fe1930ec1de28afb

Headers

File Characteristics

Imports

gngmb

msvcrt

kernel32

user32

advapi32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 31KB

.rsrc Size: 4KB - Virtual size: 1008B

.tc Size: 196KB - Virtual size: 196KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 31KB

.rsrc
Size: 4KB - Virtual size: 1008B

.tc
Size: 196KB - Virtual size: 196KB