e122fe7e6a85e33e39cde86344e36eb88bf215cc5c1f6f374ae085f1957f8134

Sharing

Copy URL Twitter E-mail

General

Target

e122fe7e6a85e33e39cde86344e36eb88bf215cc5c1f6f374ae085f1957f8134
Size

189KB
MD5

bdbb87dfc394bed71c412d714f0afd8a
SHA1

3648a0cfdce4d49eb18459d3a5b43610e50be3b5
SHA256

e122fe7e6a85e33e39cde86344e36eb88bf215cc5c1f6f374ae085f1957f8134
SHA512

558c3a1f288e722d78daaaa82bacb6973e897022dd1cc23ffdf8f8f8901fcde1e85a89b8ce5bd4bac3b108df4fa0b70523616d3da83737b094563efc287aaf04
SSDEEP

3072:W0lH5jxMG06QZf1rGJJaRVVciZrgdUZfbyk0dCtFg76z7O:xK0CbyLdC9O

Score

1^/10

Malware Config

Signatures

Files

e122fe7e6a85e33e39cde86344e36eb88bf215cc5c1f6f374ae085f1957f8134
.exe windows x86

f9d0611ffd69ead7c7d2a28ba4fe22e8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
WriteFile
VerifyVersionInfoW
VerSetConditionMask
LoadLibraryW
GetLastError
GetProcAddress
WaitForSingleObject
InitializeCriticalSectionEx
DeleteCriticalSection
OutputDebugStringW
RaiseException
CloseHandle
InitializeCriticalSectionAndSpinCount
CreateEventW
GetModuleHandleW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LoadLibraryExA
FreeLibrary
GetCurrentProcess
IsDebuggerPresent
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
VirtualQuery
VirtualProtect
GetSystemInfo
InitializeSListHead
GetSystemTimeAsFileTime

user32

wvsprintfA
SetProcessDPIAware
PeekMessageW
MessageBoxW
ChangeWindowMessageFilter
SetWindowsHookExW
SetTimer
UnhookWindowsHookEx
DispatchMessageW
GetMessageW

ole32

CoInitializeEx

vcruntime140

memset
__current_exception
__current_exception_context
_except_handler4_common

api-ms-win-crt-stdio-l1-1-0

__p__commode
__stdio_common_vsprintf
_set_fmode
__stdio_common_vswprintf

api-ms-win-crt-runtime-l1-1-0

terminate
_exit
__p___argc
_c_exit
_controlfp_s
exit
_initialize_wide_environment
_configure_wide_argv
_register_thread_local_exe_atexit_callback
_set_app_type
_seh_filter_exe
_cexit
_crt_atexit
_register_onexit_function
_initialize_onexit_table
_initterm_e
_get_wide_winmain_command_line
_initterm
__p___wargv

api-ms-win-crt-locale-l1-1-0

setlocale
_configthreadlocale

api-ms-win-crt-convert-l1-1-0

_wtoi64
_wtoll

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode

api-ms-win-crt-math-l1-1-0

__setusermatherr

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9d0611ffd69ead7c7d2a28ba4fe22e8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-math-l1-1-0

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 174KB - Virtual size: 174KB

.reloc Size: 1024B - Virtual size: 680B

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 174KB - Virtual size: 174KB

.reloc
Size: 1024B - Virtual size: 680B