a0434fdcaec62f8af073f34c580a94cb58d21203f5edf2ccbbcc467b53570d87

Resubmissions

27-01-2023 09:29

230127-lf4xmaab39 10

08-01-2023 16:36

230108-t4dpcaea97 10

Sharing

Copy URL

Twitter E-mail

General

Target

a0434fdcaec62f8af073f34c580a94cb58d21203f5edf2ccbbcc467b53570d87
Size

5.6MB
MD5

fb3be4185b968faec0c3ab87fb4b35aa
SHA1

1178b06bceea6a8ef6d0a7e16d0b0e8fc600f9ce
SHA256

a0434fdcaec62f8af073f34c580a94cb58d21203f5edf2ccbbcc467b53570d87
SHA512

bd52fe456a64f33138aef978a2dce5226bda37c7443374d094cc8af820e985b37663c0242a701fb91e7bba963936f0d7f679ad16a2a01b422209d79b327a4b7d
SSDEEP

98304:DzcoXAO0U/5C+AhzryokB1KAQk3JLdaeHz2z/mqwuQQl4hiSKLJgtl4EPMuIF03H:DAo/0Uxe91w155B7HURwLS43njM50M

Score

N/A

Malware Config

Signatures

Files

a0434fdcaec62f8af073f34c580a94cb58d21203f5edf2ccbbcc467b53570d87
.exe windows x64

e348149d1683ef4048816a2bc0991e05

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

ws2_32

recv

iphlpapi

GetAdaptersAddresses

userenv

GetUserProfileDirectoryW

crypt32

CertFindCertificateInStore

kernel32

GetVersionExA
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

IsWindowVisible

shell32

SHGetSpecialFolderPathA

ole32

CoInitializeEx

advapi32

SystemFunction036

bcrypt

BCryptGenRandom

Sections

.text
Size: - Virtual size: 3.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

S(I))X)(
Size: - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

UERMA(FT
Size: - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

&#^JUAMN
Size: - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BXPR#EHV
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

M)AVSKGU
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DJ%Y)WXR
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

$DG*YHKG
Size: - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

JMM*HMY*
Size: - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

VWTNI(*)
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

YFSUA$*A
Size: 5.6MB - Virtual size: 5.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

IWANMY)R
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

e348149d1683ef4048816a2bc0991e05

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

iphlpapi

userenv

crypt32

kernel32

user32

shell32

ole32

advapi32

bcrypt

Sections

.text Size: - Virtual size: 3.5MB

S(I))X)( Size: - Virtual size: 1.4MB

UERMA(FT Size: - Virtual size: 2.7MB

&#^JUAMN Size: - Virtual size: 126KB

BXPR#EHV Size: - Virtual size: 3KB

M)AVSKGU Size: - Virtual size: 9KB

DJ%Y)WXR Size: - Virtual size: 4KB

$DG*YHKG Size: - Virtual size: 244B

JMM*HMY* Size: - Virtual size: 1.9MB

VWTNI(*) Size: 4KB - Virtual size: 3KB

YFSUA$*A Size: 5.6MB - Virtual size: 5.6MB

IWANMY)R Size: 512B - Virtual size: 200B

.text
Size: - Virtual size: 3.5MB

S(I))X)(
Size: - Virtual size: 1.4MB

UERMA(FT
Size: - Virtual size: 2.7MB

&#^JUAMN
Size: - Virtual size: 126KB

BXPR#EHV
Size: - Virtual size: 3KB

M)AVSKGU
Size: - Virtual size: 9KB

DJ%Y)WXR
Size: - Virtual size: 4KB

$DG*YHKG
Size: - Virtual size: 244B

JMMHMY
Size: - Virtual size: 1.9MB

VWTNI(*)
Size: 4KB - Virtual size: 3KB

YFSUA$*A
Size: 5.6MB - Virtual size: 5.6MB

IWANMY)R
Size: 512B - Virtual size: 200B