201f42080e1c989774d05d5b127a8cd4b4781f1956b78df7c01112436c89b2c9[.]7z

General

Target

201f42080e1c989774d05d5b127a8cd4b4781f1956b78df7c01112436c89b2c9.7z
Size

184KB
MD5

bd790926a5860fecc9b3f016cbacb8b1
SHA1

5fcd54c53e981f1ab362840dbb5ea1db7f704555
SHA256

0f5e1ad4815e0d0e967c8e2e594cf495152911d4337bb8f5270ed590879722c4
SHA512

8589fcc26caea3acfb0e9639a70a8cf7ba695cb83e794b9e0a66e9f58f8481152272369d54287914bee8fcf93cf5a3fb43f396541281cc461fe6800e8fce83bc
SSDEEP

3072:l0H4ZCi9beMJowPv2Opuh6zNcbewvRIIJRgXWm3MlBlwdB:l0YUi4wPvxUhBbewWcgGXD6B

Score

N/A

Malware Config

Signatures

Files

201f42080e1c989774d05d5b127a8cd4b4781f1956b78df7c01112436c89b2c9.7z
.7z
201f42080e1c989774d05d5b127a8cd4b4781f1956b78df7c01112436c89b2c9.exe
.exe windows x86

bdb0b7b8351ef8f55550d90edc5bb9d8

Code Sign

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSizeEx
CreateFileA
InitializeCriticalSection
DeleteCriticalSection
GetFileSize
LeaveCriticalSection
EnterCriticalSection
SizeofResource
LockResource
LoadResource
FindResourceA
GetModuleFileNameA
VirtualAlloc
VirtualFree
LoadLibraryA
GetProcAddress
FreeLibrary
HeapAlloc
GetProcessHeap
GetNativeSystemInfo
SetLastError
VirtualProtect
IsBadReadPtr
HeapFree
SystemTimeToFileTime
LocalFileTimeToFileTime
CreateDirectoryA
GetStartupInfoA
GetModuleHandleA
ReadFile
SetFilePointer
WriteFile
SetFileTime
GlobalAlloc
GlobalFree
GetFileAttributesA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetErrorMode
CloseHandle

user32

wsprintfA

advapi32

CryptDecrypt
CryptDestroyKey
CryptReleaseContext
CryptImportKey
CryptAcquireContextA

ws2_32

WSAStartup
WSACleanup
inet_addr

msvcrt

__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_controlfp
time
__CxxFrameHandler
??3@YAXPAX@Z
_except_handler3
_local_unwind2
??2@YAPAXI@Z
sscanf
atoi
__p___argv
__p___argc
strrchr
realloc
_stricmp
free
malloc
??0exception@@QAE@ABV0@@Z
??1exception@@UAE@XZ
??0exception@@QAE@ABQBD@Z
_CxxThrowException
calloc
_mbsstr
??1type_info@@UAE@XZ
_exit
_XcptFilter

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 164KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bdb0b7b8351ef8f55550d90edc5bb9d8

Code Sign

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ws2_32

msvcrt

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 8KB - Virtual size: 5KB

.rsrc Size: 164KB - Virtual size: 160KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 8KB - Virtual size: 5KB

.rsrc
Size: 164KB - Virtual size: 160KB