cf2579e527bf1c7a6de65e7f18b9ddc0fbf596e83eae2eb9230d437a11e27db9

Sharing

Copy URL

Twitter E-mail

General

Target

cf2579e527bf1c7a6de65e7f18b9ddc0fbf596e83eae2eb9230d437a11e27db9
Size

371KB
MD5

2d52b3ad7a829cb963d88a15ebc3a2be
SHA1

998c0f85732e91b00ddddceb66494bbfbb306568
SHA256

cf2579e527bf1c7a6de65e7f18b9ddc0fbf596e83eae2eb9230d437a11e27db9
SHA512

c277230f98733995b42bf59d3b476da104aef0bcd0956802c713ccd69a3a894e7e59ff44ee70f39bcf6651680dd9044496a6595de6fdf97dc1a63288d943c95c
SSDEEP

6144:iiAyjBNHzwhYWvxio6Om4PS2eNXfBrNxFRc7CjyfHhi+77RfarZIO8+iaNuunuyc:i9yFNT6GVfBYnfHD7RfaryGNruykZxg

Score

N/A

Malware Config

Signatures

Files

cf2579e527bf1c7a6de65e7f18b9ddc0fbf596e83eae2eb9230d437a11e27db9
.exe windows x86

841ac0231f858b9f6566a8af56ab03ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptDuplicateHash
RegDeleteKeyW
GetUserNameW
RegQueryInfoKeyW
RegCreateKeyExW
RegQueryMultipleValuesA
CryptAcquireContextA
CryptDestroyHash
ReportEventW
RevertToSelf
CryptSignHashA
RegQueryInfoKeyA
CryptGetKeyParam
RegNotifyChangeKeyValue
LookupPrivilegeNameA

comdlg32

ChooseFontW
PrintDlgA
GetSaveFileNameA
ReplaceTextW
FindTextW
PrintDlgW
GetOpenFileNameA
GetFileTitleW
ChooseFontA
ReplaceTextA
GetSaveFileNameW

wininet

InternetGetCookieA
SetUrlCacheEntryGroup
InternetOpenUrlW
IsHostInProxyBypassList
InternetReadFileExA
InternetReadFile
FtpGetFileEx
InternetSetDialState
HttpCheckDavCompliance
HttpEndRequestW
InternetAlgIdToStringW
ShowX509EncodedCertificate
InternetTimeToSystemTimeW
InternetInitializeAutoProxyDll

user32

FlashWindowEx
GetKeyboardLayoutNameW
GetWindowRgn
DeferWindowPos
GetMenuItemInfoA
EnableMenuItem
DdeQueryStringW
GetMessageA
DrawMenuBar
FrameRect
DefMDIChildProcA
PaintDesktop
GetCursorPos
CreateIconFromResource
IsZoomed
DdeGetData
ValidateRect
CreateIconFromResourceEx
DragObject
SetClipboardViewer
DrawTextA
IsDialogMessageA
GetMenuStringA
GetWindowModuleFileNameW

kernel32

InterlockedExchange
LeaveCriticalSection
GetCommandLineA
VirtualQuery
GetModuleFileNameW
TerminateProcess
HeapFree
GetProcAddress
ExitProcess
RtlUnwind
WriteFile
GetFileType
GetModuleFileNameA
FindResourceA
LoadLibraryA
DeleteCriticalSection
GetCurrentThread
HeapReAlloc
TlsGetValue
UnhandledExceptionFilter
MultiByteToWideChar
GetCurrentProcessId
FreeEnvironmentStringsA
GetStdHandle
GetTickCount
GetCurrentProcess
HeapAlloc
MapViewOfFileEx
GetCommandLineW
GetStartupInfoA
SetLastError
GetPrivateProfileSectionW
TlsAlloc
GetVersion
GetEnvironmentStrings
GetConsoleScreenBufferInfo
VirtualAlloc
GetEnvironmentStringsW
HeapCreate
FreeEnvironmentStringsW
WriteProfileSectionA
TlsSetValue
InitializeCriticalSection
VirtualFree
GetSystemDefaultLCID
TlsFree
GetCurrentThreadId
IsDebuggerPresent
GetSystemTimeAsFileTime
IsBadWritePtr
SetHandleCount
QueryPerformanceCounter
HeapDestroy
EnterCriticalSection
GetModuleHandleA
GetStartupInfoW
GetLastError

gdi32

GetObjectA
CheckColorsInGamut
GetCurrentObject
SetPixelFormat
EnumICMProfilesA
SetROP2
GetStretchBltMode
SetDIBitsToDevice
SetDeviceGammaRamp
LineDDA
CreateFontIndirectA
EndDoc
FrameRgn
CreateCompatibleBitmap
SetWindowExtEx
Escape
SetICMMode
GetOutlineTextMetricsA
RemoveFontResourceA
CreateDCA
GetTextExtentPoint32A
GetPolyFillMode
GetMiterLimit
CancelDC

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 265KB - Virtual size: 274KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

841ac0231f858b9f6566a8af56ab03ec

Headers

File Characteristics

Imports

advapi32

comdlg32

wininet

user32

kernel32

gdi32

Sections

.text Size: 101KB - Virtual size: 100KB

.data Size: 265KB - Virtual size: 274KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 101KB - Virtual size: 100KB

.data
Size: 265KB - Virtual size: 274KB

.rsrc
Size: 4KB - Virtual size: 4KB