8635548992[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

8635548992.zip
Size

7.2MB
MD5

35dfd8468b89dbeb6200f827288663e6
SHA1

fd8f0037f41f019a898fa5730724b482c5685b24
SHA256

a3bcf88342fe19290922b9e61c2644ab02c824c137e25235995cd1e532a5fadb
SHA512

1cb0996a75edafe99a73bad805ab84bcbaedc20a2af8755bbac236c335aedfac79780b9c0b478397e1ae0c194c0983c0b9c8f98a9cc8550b63f1b59f7754a9cb
SSDEEP

196608:gA66u5p408AVEe9W6/GyUeSRJ/ip4+Gdvypct2L0TFHti+t:ZQj40jVHbuwp4+mKpcR5Nht

Score

N/A

Malware Config

Signatures

Files

8635548992.zip
.zip

Password: infected
d8a27727746b774ddd42d0701df9fb9fcb649a904a9e9dcab54d69fea107880b
.exe windows x86

c441a9fbd41f91882db0f16db1802c7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

qt5core

_Z5qHashRK7QStringj

qt5gui

_ZN16QDesktopServices7openUrlERK4QUrl

qt5widgets

_ZN12QApplication4execEv

qt5xml

_ZN11QDomElement12setAttributeERK7QStringS2_

libgcc_s_dw2-1

_Unwind_Resume

kernel32

GetVersionExW
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

msvcrt

__dllonexit

shell32

CommandLineToArgvW

user32

RegisterDeviceNotificationW
CharUpperBuffW

libstdc++-6

_ZNSs4_Rep10_M_destroyERKSaIcE

Sections

.text
Size: - Virtual size: 834KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.6fW0
Size: - Virtual size: 4.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.6fW1
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.6fW2
Size: 7.3MB - Virtual size: 7.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 445B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

c441a9fbd41f91882db0f16db1802c7c

Headers

File Characteristics

Imports

qt5core

qt5gui

qt5widgets

qt5xml

libgcc_s_dw2-1

kernel32

msvcrt

shell32

user32

libstdc++-6

Sections

.text Size: - Virtual size: 834KB

.data Size: - Virtual size: 15KB

.rdata Size: - Virtual size: 60KB

.eh_fram Size: - Virtual size: 94KB

.bss Size: - Virtual size: 5KB

.idata Size: - Virtual size: 19KB

.CRT Size: - Virtual size: 52B

.tls Size: - Virtual size: 32B

.6fW0 Size: - Virtual size: 4.3MB

.6fW1 Size: 3KB - Virtual size: 2KB

.6fW2 Size: 7.3MB - Virtual size: 7.3MB

.rsrc Size: 512B - Virtual size: 445B

.text
Size: - Virtual size: 834KB

.data
Size: - Virtual size: 15KB

.rdata
Size: - Virtual size: 60KB

.eh_fram
Size: - Virtual size: 94KB

.bss
Size: - Virtual size: 5KB

.idata
Size: - Virtual size: 19KB

.CRT
Size: - Virtual size: 52B

.tls
Size: - Virtual size: 32B

.6fW0
Size: - Virtual size: 4.3MB

.6fW1
Size: 3KB - Virtual size: 2KB

.6fW2
Size: 7.3MB - Virtual size: 7.3MB

.rsrc
Size: 512B - Virtual size: 445B