7cb5c982951021f5c5a5f966fe3de4af844b090139a909c2c81c75ba742e32e8N

Sharing

Copy URL Twitter E-mail

General

Target

7cb5c982951021f5c5a5f966fe3de4af844b090139a909c2c81c75ba742e32e8N
Size

19KB
MD5

f195c84429b062f70ae13ea5a9b743a0
SHA1

93e2f028b578369970deb40f827c59b5948648e2
SHA256

7cb5c982951021f5c5a5f966fe3de4af844b090139a909c2c81c75ba742e32e8
SHA512

95b8b829ac343eaa8952b1b9b846c8fa07715a45e65c8dca7eeee4d7bc27630d1ed1acf77aead98ce8821fc9d3f65a6fbd0548bd4bdd0e4a4fb7555a436cbb9d
SSDEEP

384:TUWQjYoN0e4AFEyDWaIbhh4WWieZWIT2tZH+:BQsoNh7FE9aChhdeKHe

Score

1^/10

Malware Config

Signatures

Files

7cb5c982951021f5c5a5f966fe3de4af844b090139a909c2c81c75ba742e32e8N
.exe windows:5 windows x86 arch:x86

f105bb2da83350fe7b50080e42485d62

Code Sign

1b:44:63:08:ea:b6:03:76:b3:86:5a:b3:54:c3:d4:50
Certificate

Issuer

CN=wqefggq235123

Not Before

01/03/2012, 11:19

Not After

31/12/2039, 23:59

Subject

CN=wqefggq235123

Extended Key Usages

ExtKeyUsageCodeSigning

e6:75:85:77:ce:48:35:5b:ec:99:83:f1:17:90:23:d2:d1:c3:66:73
Signer

Actual PE Digest

e6:75:85:77:ce:48:35:5b:ec:99:83:f1:17:90:23:d2:d1:c3:66:73

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryW
AssignProcessToJobObject
BackupWrite
Beep
CompareStringA
ContinueDebugEvent
CreateFileW
CreateIoCompletionPort
CreateMailslotW
CreatePipe
DefineDosDeviceW
DeleteTimerQueue
EnumDateFormatsExA
EnumTimeFormatsW
FileTimeToSystemTime
FoldStringA
GenerateConsoleCtrlEvent
GetAtomNameA
GetCommTimeouts
GetConsoleAliasA
GetConsoleAliasExesA
GetConsoleDisplayMode
GetConsoleMode
GetConsoleWindow
GetCurrentDirectoryA
GetCurrentProcess
GetDiskFreeSpaceA
GetEnvironmentVariableA
GetExitCodeProcess
GetFileAttributesExW
GetNamedPipeHandleStateA
GetNamedPipeHandleStateW
GetPriorityClass
GetPrivateProfileSectionW
GetShortPathNameW
GetStartupInfoW
GetStdHandle
GetSystemDefaultUILanguage
GetSystemDirectoryW
GetSystemInfo
GetSystemWindowsDirectoryA
GetThreadPriority
GetVersion
GlobalLock
GlobalUnWire
HeapUnlock
IsBadCodePtr
GetProcAddress
IsDBCSLeadByte
IsDBCSLeadByteEx
LocalSize
Module32Next
MultiByteToWideChar
OpenEventW
OpenProcess
OutputDebugStringA
PulseEvent
QueryDosDeviceW
QueueUserWorkItem
ReadConsoleOutputA
ReadConsoleOutputCharacterW
ResetWriteWatch
RtlZeroMemory
SetCommBreak
SetComputerNameExA
SetComputerNameW
SetConsoleMode
SetConsoleTitleA
SetConsoleWindowInfo
SetCurrentDirectoryW
SetThreadAffinityMask
SetThreadPriorityBoost
SetTimerQueueTimer
SetVolumeMountPointA
SetWaitableTimer
Sleep
UnlockFileEx
VerLanguageNameW
VerSetConditionMask
VirtualFree
VirtualQueryEx
VirtualUnlock
WaitCommEvent
WideCharToMultiByte
WriteConsoleOutputA
WriteConsoleOutputW
WriteConsoleW
WriteFile
WritePrivateProfileSectionA
_hwrite
_llseek
_lwrite
lstrcmpiA
lstrcpynA
IsBadHugeWritePtr
GetModuleHandleA

msvcrt

memset

advapi32

RegOpenKeyW

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text4
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f105bb2da83350fe7b50080e42485d62

Code Sign

1b:44:63:08:ea:b6:03:76:b3:86:5a:b3:54:c3:d4:50Certificate

Extended Key Usages

e6:75:85:77:ce:48:35:5b:ec:99:83:f1:17:90:23:d2:d1:c3:66:73Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

advapi32

Sections

.text Size: 12KB - Virtual size: 11KB

.data Size: 512B - Virtual size: 120B

.text4 Size: 1KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 2KB

1b:44:63:08:ea:b6:03:76:b3:86:5a:b3:54:c3:d4:50
Certificate

e6:75:85:77:ce:48:35:5b:ec:99:83:f1:17:90:23:d2:d1:c3:66:73
Signer

.text
Size: 12KB - Virtual size: 11KB

.data
Size: 512B - Virtual size: 120B

.text4
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 2KB