cffd6c4e0c496875cac6079edeeeeb05bf24bc2cc88eae7e37af7c9c2fa2187b

Sharing

Copy URL Twitter E-mail

General

Target

cffd6c4e0c496875cac6079edeeeeb05bf24bc2cc88eae7e37af7c9c2fa2187b
Size

620KB
MD5

2721ab3743bfa072d2c79e973fe2840a
SHA1

66759e3a2a2473febfa1de4d777ca0167c4de39d
SHA256

cffd6c4e0c496875cac6079edeeeeb05bf24bc2cc88eae7e37af7c9c2fa2187b
SHA512

640f13e214348f30422a9eac1a5b4724f45c04c9b28e7709d7428dc3d9cd800a9ef1fe9548bf8b85f39d379a78d4afb5edca85e2e8f929b3fc207ac69e683971
SSDEEP

6144:PgzJ8j9a8A94yKx+2jKwvV0dAQS2GHh01jDyBehM9PoGT0PqEgcDjCTJPSo0AOyq:PgwD038+OKIkAQOSykI0gcswTGcVUNC

Score

N/A

Malware Config

Signatures

Files

cffd6c4e0c496875cac6079edeeeeb05bf24bc2cc88eae7e37af7c9c2fa2187b
.exe windows x86

2ae0bb1f0c9190a0f1cb004b4af67c48

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
GetACP
SetHandleCount
SetFilePointer
GetUserDefaultLCID
HeapSize
GetSystemInfo
GetDiskFreeSpaceExA
TlsFree
VirtualQuery
lstrcat
FreeEnvironmentStringsA
GetLocaleInfoW
GetTickCount
WaitForMultipleObjects
LoadLibraryA
SetLastError
HeapAlloc
EnterCriticalSection
MultiByteToWideChar
QueryPerformanceCounter
LeaveCriticalSection
ExitProcess
GetCurrentThread
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
GetDateFormatA
VirtualFreeEx
GetStdHandle
HeapDestroy
WideCharToMultiByte
EnumTimeFormatsW
LocalFlags
TlsSetValue
OpenMutexA
FlushFileBuffers
MoveFileExA
GetCommandLineA
InitializeCriticalSection
CreateMutexA
EnumSystemLocalesA
TlsGetValue
GetCurrentProcessId
GetFileType
GetTimeFormatA
GetFullPathNameA
FreeEnvironmentStringsW
GetStartupInfoA
CloseHandle
FindFirstFileExW
TerminateProcess
GetStringTypeA
GetConsoleOutputCP
GetProcAddress
GetEnvironmentStrings
DeleteCriticalSection
GetModuleHandleA
IsBadWritePtr
VirtualFree
GetFileAttributesExA
InterlockedExchange
GetCurrentThreadId
VirtualProtect
GetLastError
UnhandledExceptionFilter
HeapCreate
SetConsoleCtrlHandler
EnumCalendarInfoExW
GetStringTypeW
IsValidLocale
SetEnvironmentVariableA
GetLocaleInfoA
GetEnvironmentStringsA
RtlUnwind
InterlockedIncrement
TlsAlloc
GlobalLock
LCMapStringW
HeapFree
TryEnterCriticalSection
SetStdHandle
VirtualAlloc
CompareStringW
GetSystemTimeAsFileTime
GetCurrentProcess
VirtualProtectEx
HeapReAlloc
GetModuleFileNameA
GetVersionExA
LCMapStringA
IsValidCodePage
GetLongPathNameW
WriteFile
GetComputerNameW
ReadFile
GetTimeZoneInformation

user32

SetWindowTextA
RegisterClassA
CharLowerBuffA
WINNLSGetEnableStatus
RemovePropA
GetKBCodePage
SetForegroundWindow
DdeClientTransaction
SetPropW
LoadAcceleratorsW
SetWindowContextHelpId
RegisterClassExA
GetKeyboardState
GetGuiResources

comctl32

InitCommonControlsEx

Sections

.text
Size: 445KB - Virtual size: 445KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ae0bb1f0c9190a0f1cb004b4af67c48

Headers

File Characteristics

Imports

kernel32

user32

comctl32

Sections

.text Size: 445KB - Virtual size: 445KB

.rdata Size: 45KB - Virtual size: 49KB

.data Size: 108KB - Virtual size: 107KB

.rsrc Size: 20KB - Virtual size: 20KB

.text
Size: 445KB - Virtual size: 445KB

.rdata
Size: 45KB - Virtual size: 49KB

.data
Size: 108KB - Virtual size: 107KB

.rsrc
Size: 20KB - Virtual size: 20KB