cfff7ee66f0cda95c7d745b811e25b73b7a8f39c6bafcd7f9a56b4b1e81f0cde

Sharing

Copy URL Twitter E-mail

General

Target

cfff7ee66f0cda95c7d745b811e25b73b7a8f39c6bafcd7f9a56b4b1e81f0cde
Size

264KB
MD5

cbe84f1f5667e322501741eabb41e800
SHA1

b9197735ff24cee2770e189def7419a016cd7130
SHA256

cfff7ee66f0cda95c7d745b811e25b73b7a8f39c6bafcd7f9a56b4b1e81f0cde
SHA512

8846497973e58ee6732600543a189fdfe73ca7ef4b685dd6f7c6405cf5c0c7418c0bb81dd09c28276f63bb5d25d8b00251a5359f1e88b5daa7811e73f03a390c
SSDEEP

6144:1CAjEHSmKi09JVpJVRN4SvsKAr1elt+5DlNMyS3sxtJr:eHSmKi097vNQyt+5lS3qt5

Score

N/A

Malware Config

Signatures

Files

cfff7ee66f0cda95c7d745b811e25b73b7a8f39c6bafcd7f9a56b4b1e81f0cde
.exe windows x86

443244584e1d860dc11b59c8227fb992

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptReleaseContext
RegConnectRegistryA
RegDeleteKeyA
ReportEventW
CryptGetUserKey
CryptContextAddRef
CryptAcquireContextA
CryptGetDefaultProviderA
CryptHashSessionKey
CryptImportKey
CryptDuplicateHash
RegQueryValueExW
CryptDuplicateKey
CryptGetKeyParam
CryptGetHashParam
RegCloseKey
CryptEnumProvidersA
CryptDeriveKey

shell32

SHGetNewLinkInfo
SHGetInstanceExplorer
ShellHookProc
SHAddToRecentDocs
SHGetFileInfo
ShellExecuteExW
CheckEscapesW

wininet

GopherGetAttributeA
CommitUrlCacheEntryW
InternetCombineUrlA
GetUrlCacheHeaderData
InternetTimeFromSystemTimeA
InternetReadFile
HttpEndRequestA
GetUrlCacheEntryInfoA
GopherGetAttributeW

gdi32

PolyBezier
GetObjectA
CreatePen
PtVisible
SetViewportOrgEx
ExtEscape
LPtoDP
GetBkColor
StartDocA
Pie
LineDDA

kernel32

InterlockedIncrement
OpenMutexW
UnhandledExceptionFilter
VirtualAlloc
GetFileType
GetStringTypeA
TlsGetValue
ContinueDebugEvent
InterlockedExchange
GetEnvironmentStrings
GetTimeZoneInformation
MultiByteToWideChar
MapViewOfFileEx
GetModuleHandleA
DeleteCriticalSection
TlsFree
GetTimeFormatA
LeaveCriticalSection
GetProcAddress
EnterCriticalSection
GetStdHandle
CompareStringA
WriteFile
HeapReAlloc
IsValidLocale
GetUserDefaultLCID
GetStringTypeExW
FreeEnvironmentStringsA
SetSystemTime
HeapFree
GetSystemTimeAsFileTime
WideCharToMultiByte
GetOEMCP
TlsAlloc
GetCPInfo
GetVersionExA
InitializeCriticalSection
FindFirstFileExA
InterlockedDecrement
HeapDestroy
SetEnvironmentVariableA
FindAtomA
GetCommandLineA
WriteProfileSectionA
IsDebuggerPresent
LCMapStringA
GetCurrentThread
GetLocaleInfoW
IsValidCodePage
GetThreadPriorityBoost
GetCurrentProcessId
LCMapStringW
LoadLibraryA
CopyFileA
LoadLibraryW
GetTickCount
QueryPerformanceCounter
SetHandleCount
EnumDateFormatsW
TerminateProcess
ReadConsoleOutputA
SetConsoleCtrlHandler
EnumSystemLocalesA
lstrcatW
GetCurrentThreadId
GetProcessHeap
CloseHandle
GetCurrentProcess
GetStartupInfoA
RtlUnwind
Sleep
HeapAlloc
FlushViewOfFile
LocalFileTimeToFileTime
FreeEnvironmentStringsW
GetDateFormatA
GetLastError
TlsSetValue
GetLocaleInfoA
ExitProcess
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetConsoleOutputCP
VirtualFree
CreateMailslotA
FreeLibrary
GetACP
HeapSize
VirtualQuery
HeapCreate
GetModuleFileNameA
SetLastError
GetStringTypeW
CompareStringW

user32

DialogBoxIndirectParamA
CharUpperA
SendMessageW
CreateDialogIndirectParamW
SetSystemCursor
DlgDirListA
OpenWindowStationW
SetMenuContextHelpId
TrackMouseEvent
TranslateMessage
CharToOemBuffW
CharUpperW
EditWndProc
GetListBoxInfo
GetClassWord
IsDialogMessageW
SwapMouseButton
BlockInput
GetDesktopWindow
LoadKeyboardLayoutW
LockWindowUpdate

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

443244584e1d860dc11b59c8227fb992

Headers

File Characteristics

Imports

advapi32

shell32

wininet

gdi32

kernel32

user32

Sections

.text Size: 144KB - Virtual size: 143KB

.data Size: 115KB - Virtual size: 119KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 144KB - Virtual size: 143KB

.data
Size: 115KB - Virtual size: 119KB

.rsrc
Size: 4KB - Virtual size: 3KB