cffa6cd79c31a59374df4cae97329e54a24c482bb71b04134be78dff7fb4159e

Sharing

Copy URL

Twitter E-mail

General

Target

cffa6cd79c31a59374df4cae97329e54a24c482bb71b04134be78dff7fb4159e
Size

206KB
MD5

7c449a329abe40d0d906c6b0bdba1b31
SHA1

5a37e49dae0612b80e4ec9cca5996487bc46d0ee
SHA256

cffa6cd79c31a59374df4cae97329e54a24c482bb71b04134be78dff7fb4159e
SHA512

aaab9f4de5df1ebe3fadda36793b3b1100a1f2315a36405105912ac0795787c79e6432e652444489e133d5e94eeac7f53b670f5ea63688bb776daaaa4f3c0776
SSDEEP

6144:pI/9zgWclaAr9sMd+s/t5Ud9VxGFkWhY9A/BU3e:pI/RgWclaApD/t5uuFk9SU3e

Score

N/A

Malware Config

Signatures

Files

cffa6cd79c31a59374df4cae97329e54a24c482bb71b04134be78dff7fb4159e
.exe windows x86

115ee44ec15dc79e708f1b78401edc81

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

shlwapi

PathCanonicalizeW
PathIsRelativeW
PathStripToRootW
PathIsURLW
PathIsRootW
PathCombineW

comctl32

ImageList_GetIconSize
ImageList_Add
ImageList_DrawEx
ImageList_Create
ImageList_Destroy

rpcrt4

RpcBindingSetAuthInfoA
NdrClientCall
RpcStringBindingComposeA
RpcBindingFromStringBindingA
RpcStringFreeA

comdlg32

GetFileTitleA

ole32

CLSIDFromProgID
CreateStreamOnHGlobal
CoCreateInstance
OleRun
ProgIDFromCLSID
StringFromCLSID
CoTaskMemFree
RegisterDragDrop
GetHGlobalFromStream
ReleaseStgMedium
OleGetAutoConvert
RevokeDragDrop
CoCreateGuid
GetHGlobalFromILockBytes
CoFreeUnusedLibraries
CoGetClassObject
CoGetMalloc
CLSIDFromString
CoTaskMemAlloc
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
OleDuplicateData
OleRegGetUserType
CreateILockBytesOnHGlobal

kernel32

GetSystemTime
CreateFiber
SetEndOfFile
GetFileAttributesA
GetFileType
LocalAlloc
GetVolumeInformationW
WriteFileGather
LockFile
CompareStringW
FileTimeToLocalFileTime
EnumResourceNamesW
UnlockFile
SearchPathW
FlushFileBuffers
GetProfileStringW
IsDBCSLeadByte
FlushFileBuffers
GetFileTime
GetVersionExW
VerLanguageNameW
GetUserDefaultLangID
FileTimeToSystemTime
FindResourceExA
GetSystemDirectoryW

user32

ToAscii
EmptyClipboard
GetSysColorBrush
RegisterClassW
ChildWindowFromPoint
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
IsClipboardFormatAvailable
DestroyIcon
WinHelpW
ClipCursor
SetClipboardData
MonitorFromWindow
DefWindowProcW
SetWindowPos
DestroyCursor
DrawEdge
SetScrollRange
GetSysColor

Sections

.text
Size: 179KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

115ee44ec15dc79e708f1b78401edc81

Headers

File Characteristics

Imports

shlwapi

comctl32

rpcrt4

comdlg32

ole32

kernel32

user32

Sections

.text Size: 179KB - Virtual size: 179KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 22KB - Virtual size: 22KB

.lib Size: 512B - Virtual size: 96KB

.text
Size: 179KB - Virtual size: 179KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 22KB - Virtual size: 22KB

.lib
Size: 512B - Virtual size: 96KB