6326d5f602bbbe6dc0216bcb429f0e4ae7ca61ecac1f60734003a78e27d256be

Sharing

Copy URL

Twitter E-mail

General

Target

6326d5f602bbbe6dc0216bcb429f0e4ae7ca61ecac1f60734003a78e27d256be
Size

229KB
MD5

23601ecaf49849691521c43445c66ba0
SHA1

b3ad45a4dbe5c5ca1a31ab9210a523d47ad69f78
SHA256

6326d5f602bbbe6dc0216bcb429f0e4ae7ca61ecac1f60734003a78e27d256be
SHA512

c0f863c6ee6e2a8e3035091deefcca9302d1513d13b579a0d61fffc495b18a4b57dcbae928971624258f79e8d3363168cb02e8194814ccc31c1b6c3511e838b7
SSDEEP

6144:K8pQdcDR/t/B5bf77VIe1yKtmvG+6TzdenYg:KYUcDlt/B537qTGv+UenYg

Score

N/A

Malware Config

Signatures

Files

6326d5f602bbbe6dc0216bcb429f0e4ae7ca61ecac1f60734003a78e27d256be
.exe windows x86

abb4662ce9fbbdbfe13f999769eaf09c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
AddConsoleAliasW
WritePrivateProfileSectionA
GetEnvironmentVariableA
ContinueDebugEvent
GetCommandLineW
GlobalCompact
GetCurrentProcess
GetSystemDefaultLCID
GetTickCount
GetSystemTimeAsFileTime
GetFileAttributesW
GetVolumeInformationA
GetConsoleAliasExesLengthW
MulDiv
GetTempPathW
GetConsoleOutputCP
GetStdHandle
SetLastError
GetThreadLocale
IsValidCodePage
GetModuleHandleA
GetCurrentThreadId
GetDiskFreeSpaceExA
GetVersion
GetVolumeInformationW
GlobalAddAtomA
GetDriveTypeA
FindResourceExW

user32

ShowWindow
GetDesktopWindow
wvsprintfA
CreateWindowStationA
TrackPopupMenuEx
SetRectEmpty
LoadIconA
EndPaint
LoadImageA
EmptyClipboard
IsCharAlphaNumericA
CallWindowProcW
FindWindowA
OpenClipboard
IsWindow
SetClassLongW
DdeUninitialize
SetWindowLongA
CheckMenuRadioItem
MapVirtualKeyA
GetDoubleClickTime
wsprintfW
GetClassLongW
IsCharAlphaW
CharPrevW
InvalidateRgn
GetFocus
ReuseDDElParam
GetLastActivePopup
IsZoomed
SetCapture
CharNextW
GetMessageW
VkKeyScanW
DestroyWindow
IsCharUpperA
SendMessageTimeoutA

gdi32

SetViewportExtEx
GetStockObject

ole32

CoInitialize

Exports

Exports

?BeefFailPokyMawnRobsizarrep@@YGEJPCU_GUID@@PCDPC_W@Z
?ClefwalkGuffNabsburdforaYourer@@YG_KPCI@Z
?FearrazeDourJumpplieBrutmi@@YGKACHACU_GUID@@ACUHartemuqi@@M@Z
?YardLunyYodhfohnplanbiomy@@YGKDPCIUToutVivaShay@@UtagPOINT@@_KACJ@Z

Sections

.text
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

abb4662ce9fbbdbfe13f999769eaf09c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Exports

Exports

Sections

.text Size: 98KB - Virtual size: 97KB

.data Size: 58KB - Virtual size: 58KB

.rsrc Size: 42KB - Virtual size: 42KB

.reloc Size: 29KB - Virtual size: 28KB

.text
Size: 98KB - Virtual size: 97KB

.data
Size: 58KB - Virtual size: 58KB

.rsrc
Size: 42KB - Virtual size: 42KB

.reloc
Size: 29KB - Virtual size: 28KB