fe0f17aefe66829e9b1ec1d524b7946c1cc56b3f34b26e7591b36907d89601e1

Sharing

Copy URL

Twitter E-mail

General

Target

fe0f17aefe66829e9b1ec1d524b7946c1cc56b3f34b26e7591b36907d89601e1
Size

485KB
MD5

5146a6bc71523d8d55a72b3c4a6d3775
SHA1

9d5dfa47ef983b71bc1ce4df4bb1b14227c8bf9b
SHA256

fe0f17aefe66829e9b1ec1d524b7946c1cc56b3f34b26e7591b36907d89601e1
SHA512

09c5d89e5161180e59bb9262cffcdfa7f5cd1ad7c24f53d3a3aa0de01205a4b501bb00e708288d8821e3ddb3bb3c881d453dbeb40c5e39ac1d84f762e2cede7a
SSDEEP

12288:R58Ho4fOnN+Kt0iIBuDIzZe7C4lJvjTfuWa:R6FM+KDDIzY7Pu

Score

N/A

Malware Config

Signatures

Files

fe0f17aefe66829e9b1ec1d524b7946c1cc56b3f34b26e7591b36907d89601e1
.exe windows x86

9d5d8b5826939b042ec38c8a5b5ef082

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceNamesW
lstrlenA
SetEndOfFile
FreeLibrary
CallNamedPipeA
SetUnhandledExceptionFilter
ReadConsoleA
InterlockedDecrement
SetEnvironmentVariableW
GetProfileSectionA
WaitForSingleObject
OpenSemaphoreA
SetTapeParameters
GetProcessPriorityBoost
SetCommState
SetProcessPriorityBoost
GetPriorityClass
ActivateActCtx
LoadLibraryW
GetConsoleMode
CopyFileW
GetPrivateProfileStructW
LeaveCriticalSection
WritePrivateProfileStructW
ReadFile
lstrcatA
GetBinaryTypeW
GetACP
ExitThread
FindNextVolumeMountPointW
DisconnectNamedPipe
GetNamedPipeHandleStateW
GetStdHandle
IsDBCSLeadByteEx
GetCurrentDirectoryW
SetLastError
GetProcAddress
SetVolumeLabelW
GetConsoleDisplayMode
LoadLibraryA
LocalAlloc
BuildCommDCBAndTimeoutsW
SetCurrentDirectoryW
SetFileApisToANSI
AddAtomA
GetTapeParameters
CreateMutexA
GetVersionExA
LocalFree
GetLastError
MoveFileA
GetStartupInfoW
HeapValidate
IsBadReadPtr
RaiseException
EnterCriticalSection
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetModuleFileNameW
SetStdHandle
WriteFile
WideCharToMultiByte
GetConsoleCP
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleHandleW
Sleep
InterlockedIncrement
ExitProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
HeapDestroy
HeapCreate
HeapFree
VirtualFree
GetModuleFileNameA
HeapAlloc
HeapSize
HeapReAlloc
VirtualAlloc
GetOEMCP
GetCPInfo
IsValidCodePage
InitializeCriticalSectionAndSpinCount
DebugBreak
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
RtlUnwind
MultiByteToWideChar
SetFilePointer
WriteConsoleA
GetConsoleOutputCP
GetModuleHandleA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
FlushFileBuffers
CreateFileA
CloseHandle

Exports

Exports

_asdasfafswery@8
_asdga@4
_every@4
_trutovik@4
_weewgg@8

Sections

.text
Size: 409KB - Virtual size: 409KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 39.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 89B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d5d8b5826939b042ec38c8a5b5ef082

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 409KB - Virtual size: 409KB

.rdata Size: 45KB - Virtual size: 44KB

.data Size: 8KB - Virtual size: 39.5MB

.tls Size: 512B - Virtual size: 89B

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 409KB - Virtual size: 409KB

.rdata
Size: 45KB - Virtual size: 44KB

.data
Size: 8KB - Virtual size: 39.5MB

.tls
Size: 512B - Virtual size: 89B

.rsrc
Size: 21KB - Virtual size: 20KB