365353f91c02760aa5d4557fc08ebe45e7834dbf3c15f0e324a61a953e3cb80a

Sharing

Copy URL Twitter E-mail

General

Target

365353f91c02760aa5d4557fc08ebe45e7834dbf3c15f0e324a61a953e3cb80a
Size

222KB
MD5

c8e503961de297787da82f1e0d64325b
SHA1

1d608f385b8235f79d3454a9f80111133b33a462
SHA256

365353f91c02760aa5d4557fc08ebe45e7834dbf3c15f0e324a61a953e3cb80a
SHA512

672861743d16a30770a21b27f985e5696b73667fc1ee0787d26f768111ad4025009e7d213eb57d923f82c8777f46694d11f0651f4bbec238d606778c310c9912
SSDEEP

6144:5GwhCOQg+hXvUvkshgn0mq4peBy7r07w6p:5GXh/UvksSQ4k0P0

Score

N/A

Malware Config

Signatures

Files

365353f91c02760aa5d4557fc08ebe45e7834dbf3c15f0e324a61a953e3cb80a
.exe windows x86

f9596c3f8f4aef8d79cb64ee9287a875

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

fxplugin

?setFileExtension@CPluginManager@CFX@@QAEXABVQString@@@Z
?setPluginPaths@CPluginManager@CFX@@QAEXABVQStringList@@@Z
?setArguments@CPluginManager@CFX@@QAEXABVQStringList@@@Z
?setAppEntry@CPluginManager@CFX@@QAEXABVCAppEntry@2@@Z
?setAppPluginName@CPluginManager@CFX@@QAEXABVQString@@@Z
?loadPluginSpecs@CPluginManager@CFX@@QAE_NXZ
?loadPlugins@CPluginManager@CFX@@QAE_NXZ
?start@CPluginManager@CFX@@QAE_NXZ
?instance@CPluginManager@CFX@@SAPAV12@XZ
?appPluginName@CPluginManager@CFX@@QBE?AVQString@@XZ
?shutdown@CPluginManager@CFX@@QAEXXZ

fxputils

?setHandleQtMessage@CLogManager@CFX@@QAEX_N@Z
?setFlushToConsole@CLogManager@CFX@@QAEX_N@Z
?instance@CAppEntry@CFX@@SAPAV12@XZ
?instance@CLogManager@CFX@@SAPAV12@XZ
?load@CAppEntry@CFX@@QAE_NABVQString@@@Z

qtgui4

?exec@QApplication@@SAHXZ
??0QApplication@@QAE@AAHPAPADH@Z
??1QApplication@@UAE@XZ

qtcore4

?fromLatin1_helper@QString@@CAPAUData@1@PBDH@Z
?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ
?start@QTime@@QAEXXZ
?fromAscii_helper@QString@@CAPAUData@1@PBDH@Z
?separator@QDir@@SA?AVQChar@@XZ
?arguments@QCoreApplication@@SA?AVQStringList@@XZ
?append@QListData@@QAEPAPAXXZ
?detach@QListData@@QAEPAUData@1@H@Z
?detach_grow@QListData@@QAEPAUData@1@PAHH@Z
?erase@QListData@@QAEPAPAXPAPAX@Z
?qFree@@YAXPAX@Z
?free@QString@@CAXPAUData@1@@Z
?shared_null@QListData@@2UData@1@A
??YQString@@QAEAAV0@VQChar@@@Z
??0QString@@QAE@ABV0@@Z
?append@QString@@QAEAAV1@ABV1@@Z
??1QString@@QAE@XZ
?reallocate@QVectorData@@SAPAU1@PAU1@HHH@Z
?qMemSet@@YAPAXPAXHI@Z
?allocate@QVectorData@@SAPAU1@HH@Z
?qWinMain@@YAXPAUHINSTANCE__@@0PADHAAHAAV?$QVector@PAD@@@Z
?qBadAlloc@@YAXXZ
?free@QVectorData@@SAXPAU1@H@Z
?detach@QByteArray@@QAEXXZ
?fromWCharArray@QString@@SA?AV1@PBGH@Z
?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ

msvcr90

?_type_info_dtor_internal_method@type_info@@QAEXXZ
memcpy
_controlfp_s
_invoke_watson
_except_handler4_common
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
_crt_debugger_hook
__set_app_type
_encode_pointer
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_acmdln
exit
__CxxFrameHandler3
??3@YAXPAX@Z
_CxxThrowException
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
_ismbblead

kernel32

GetCommandLineW
Sleep
InterlockedCompareExchange
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
InterlockedExchange

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 205KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9596c3f8f4aef8d79cb64ee9287a875

Headers

DLL Characteristics

File Characteristics

Imports

fxplugin

fxputils

qtgui4

qtcore4

msvcr90

kernel32

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 968B

.rsrc Size: 205KB - Virtual size: 204KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 968B

.rsrc
Size: 205KB - Virtual size: 204KB

.reloc
Size: 1KB - Virtual size: 1KB