cfe769f7adfdbe33e56ee2fef0e3ebf835015a4cbdd02a888009299149ed8750

Sharing

Copy URL Twitter E-mail

General

Target

cfe769f7adfdbe33e56ee2fef0e3ebf835015a4cbdd02a888009299149ed8750
Size

451KB
MD5

be7ea2b6ad08cf669e3ae2f847b5586d
SHA1

33c40915b52260d0ea6fe3c8feb41afbf971d173
SHA256

cfe769f7adfdbe33e56ee2fef0e3ebf835015a4cbdd02a888009299149ed8750
SHA512

b53e7da666f13298d36b70bded6fae9bc2e3fdff4d043798747876993e5667711215969864d00a687041a2b7032effd8ceb93bb63074a382a5572b7cab596d32
SSDEEP

12288:kqGfy/7WgUcqL7UOb0BV0MrlKIbE2U4sF:arb0P2IbE2U

Score

N/A

Malware Config

Signatures

Files

cfe769f7adfdbe33e56ee2fef0e3ebf835015a4cbdd02a888009299149ed8750
.exe windows x86

b1045c8417c7798e48d687705e239a55

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

LookupAccountSidA
RegQueryMultipleValuesA
RegFlushKey
CryptGetProvParam
RegOpenKeyExW
ReportEventA
GetUserNameW
CryptDeriveKey
CryptGetHashParam
RegLoadKeyA
CryptContextAddRef
RegCreateKeyExW

gdi32

CreateDiscardableBitmap
SetMetaFileBitsEx
GetWorldTransform
GetEnhMetaFileDescriptionW
GetOutlineTextMetricsW
CreateEllipticRgn
EnumICMProfilesW
ExtTextOutW
AnimatePalette
OffsetClipRgn
UpdateColors
SetTextCharacterExtra
AddFontResourceA
Escape
SetStretchBltMode
EnumMetaFile
GetAspectRatioFilterEx
DeleteMetaFile

comdlg32

GetSaveFileNameA
FindTextA
PageSetupDlgW
PrintDlgW

wininet

InternetDialW

kernel32

GetStringTypeA
HeapFree
LoadLibraryA
EnterCriticalSection
GetCommandLineA
MultiByteToWideChar
TlsFree
TlsGetValue
UnhandledExceptionFilter
WriteConsoleOutputA
GetStringTypeW
HeapAlloc
WideCharToMultiByte
HeapReAlloc
HeapCreate
GetVersion
GetExitCodeThread
GetTickCount
WriteFile
GetOEMCP
InterlockedExchange
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetACP
GetLastError
TerminateProcess
GetEnvironmentStrings
FreeEnvironmentStringsA
SetLastError
VirtualFree
GetFileType
GetProcAddress
InitializeCriticalSection
GetModuleHandleA
GetCurrentThreadId
GetCPInfo
IsBadWritePtr
GetCurrentProcess
TlsAlloc
LCMapStringA
GetEnvironmentStringsW
DeleteCriticalSection
GetStdHandle
LeaveCriticalSection
VirtualAlloc
GetCurrentThread
LCMapStringW
ExitProcess
RtlUnwind
GetModuleFileNameA
FreeEnvironmentStringsW
GetStartupInfoA
SetHandleCount
GetCurrentProcessId
VirtualQuery
TlsSetValue
HeapDestroy

user32

PostThreadMessageA
InSendMessageEx
CreateDialogParamA
NotifyWinEvent
GetMenuBarInfo

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 306KB - Virtual size: 305KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b1045c8417c7798e48d687705e239a55

Headers

File Characteristics

Imports

advapi32

gdi32

comdlg32

wininet

kernel32

user32

Sections

.text Size: 132KB - Virtual size: 132KB

.data Size: 306KB - Virtual size: 305KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 132KB - Virtual size: 132KB

.data
Size: 306KB - Virtual size: 305KB

.rsrc
Size: 12KB - Virtual size: 11KB