MOTIF_0b93ae016f60ef832fb824be0d945aac

Sharing

Copy URL Twitter E-mail

General

Target

MOTIF_0b93ae016f60ef832fb824be0d945aac
Size

6.4MB
MD5

55bd4fc1cfc4d57465d4c62e31196682
SHA1

d0d7bc6716d33a5ca304b280b064dfeedb13a882
SHA256

e38bf180863f9188e9919aebe52365fc5ef4c484438be09662948741e04948eb
SHA512

4274fcf54017c0a8af978f3c8f8fe2aadcc1ade53b72ac760d10018803b143e9a4f644e0217751e6e23f9cd40599918e32bb783c8c76a645ee5891eebb40cd9e
SSDEEP

49152:gRwYKHFlWzbBlZ/BGEewHKHRHmrlipKEeAueuLhm2ayeuUJC5sdZHhQ/7YMukW7X:gRB1VTayeuUsS3LGJ1

Score

1^/10

Malware Config

Signatures

Files

MOTIF_0b93ae016f60ef832fb824be0d945aac
.exe windows

Password:

cbc808c4ca60ff4962d3ac5890dbf643

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

CryptAcquireContextW
CryptGenRandom
CryptReleaseContext

ntdll

NtWaitForSingleObject

ws2_32

WSAGetOverlappedResult

kernel32

AddVectoredExceptionHandler
CloseHandle
CreateEventA
CreateIoCompletionPort
CreateThread
CreateWaitableTimerA
DuplicateHandle
ExitProcess
FreeEnvironmentStringsW
GetConsoleMode
GetEnvironmentStringsW
GetProcAddress
GetProcessAffinityMask
GetQueuedCompletionStatus
GetStdHandle
GetSystemInfo
GetThreadContext
LoadLibraryW
LoadLibraryA
ResumeThread
SetConsoleCtrlHandler
SetErrorMode
SetEvent
SetProcessPriorityBoost
SetThreadPriority
SetUnhandledExceptionFilter
SetWaitableTimer
SuspendThread
VirtualAlloc
VirtualFree
WaitForSingleObject
WriteConsoleW
WriteFile

Sections

.text
Size: 4.3MB - Virtual size: 4.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 93KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 255B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/18
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/30
Size: 203KB - Virtual size: 202KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/43
Size: 869KB - Virtual size: 869KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 274KB - Virtual size: 274KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/71
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/87
Size: 512B - Virtual size: 32B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.symtab
Size: 395KB - Virtual size: 394KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Password:

cbc808c4ca60ff4962d3ac5890dbf643

Headers

File Characteristics

Imports

advapi32

ntdll

ws2_32

kernel32

Sections

.text Size: 4.3MB - Virtual size: 4.3MB

.data Size: 93KB - Virtual size: 185KB

/4 Size: 512B - Virtual size: 255B

/18 Size: 236KB - Virtual size: 235KB

/30 Size: 203KB - Virtual size: 202KB

/43 Size: 869KB - Virtual size: 869KB

/55 Size: 274KB - Virtual size: 274KB

/71 Size: 113KB - Virtual size: 113KB

/87 Size: 512B - Virtual size: 32B

.idata Size: 1KB - Virtual size: 1KB

.symtab Size: 395KB - Virtual size: 394KB

.rsrc Size: 1024B - Virtual size: 876B

.text
Size: 4.3MB - Virtual size: 4.3MB

.data
Size: 93KB - Virtual size: 185KB

/4
Size: 512B - Virtual size: 255B

/18
Size: 236KB - Virtual size: 235KB

/30
Size: 203KB - Virtual size: 202KB

/43
Size: 869KB - Virtual size: 869KB

/55
Size: 274KB - Virtual size: 274KB

/71
Size: 113KB - Virtual size: 113KB

/87
Size: 512B - Virtual size: 32B

.idata
Size: 1KB - Virtual size: 1KB

.symtab
Size: 395KB - Virtual size: 394KB

.rsrc
Size: 1024B - Virtual size: 876B