167b79c0f3e736a8444b7fa9d514d101[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

167b79c0f3e736a8444b7fa9d514d101.exe
Size

512KB
MD5

167b79c0f3e736a8444b7fa9d514d101
SHA1

db7bc384f839aea2fe651d922d7a1c8f958c85ba
SHA256

e26469eb6a137c04029cbe8519f6064fa8f576c956e8873c0385883077b93f1f
SHA512

be4efc3ae005b71ea1670eece9c4ed7f5dc73c8645b3c0de4ba2d700f31300164f7f3ae6f11130caba13e9b8114d13b8603340f317fc8b08c2646d29a04929c1
SSDEEP

12288:aTKeKRCkHYbGrHprE4R51EUc/wkvH+uX2jirSz3f43sQkbR:aTRAvH6GrHv51EU6vHLPSzv4rk

Score

N/A

Malware Config

Signatures

Files

167b79c0f3e736a8444b7fa9d514d101.exe
.exe windows x86

4d498fcaaa649fc0fa5ec434bbabef3d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
_XcptFilter
isprint
_except_handler3
_controlfp
__dllonexit
_onexit
_exit
memset
_strtime
__p__fmode
_strdate
system
fclose
exit
_getch
_strupr
malloc
puts
putchar
fopen
__set_app_type
_getche

kernel32

GetModuleHandleA
SetConsoleCursorPosition
GetStdHandle
GetStartupInfoA

avifil32

AVIFileEndRecord
AVIStreamReadFormat
IID_IAVIStream

msvfw32

GetOpenFileNamePreviewA
MCIWndCreateW

crypt32

CryptSetOIDFunctionValue
CertSerializeCTLStoreElement
CertGetCRLContextProperty

shell32

Shell_NotifyIconW
SHEmptyRecycleBinA
ExtractAssociatedIconExW
SHBrowseForFolder

ws2_32

WSASocketA
WSAWaitForMultipleEvents
WSAEventSelect
recv

user32

SetKeyboardState
DrawTextExA
TrackPopupMenuEx
LoadIconA
GetMessagePos
DestroyWindow
GetDC
SwitchDesktop

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d498fcaaa649fc0fa5ec434bbabef3d

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

avifil32

msvfw32

crypt32

shell32

ws2_32

user32

Sections

.text Size: 39KB - Virtual size: 38KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 9KB - Virtual size: 9KB

.rsrc Size: 36KB - Virtual size: 35KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 39KB - Virtual size: 38KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 36KB - Virtual size: 35KB

.reloc
Size: 3KB - Virtual size: 2KB