bdb36925dcf14d6a74ebc8b1f913cea53eefcc5fff3b9d0049f4ed60b2060737

General

Target

bdb36925dcf14d6a74ebc8b1f913cea53eefcc5fff3b9d0049f4ed60b2060737
Size

760KB
MD5

3cf07e7f68a28e6aab069b9c124c4fec
SHA1

be45a63bcca6e6995eddc7720ecf7993160edba1
SHA256

bdb36925dcf14d6a74ebc8b1f913cea53eefcc5fff3b9d0049f4ed60b2060737
SHA512

cf7d39c429d7eba99d8bcb63330de6f54dedf1c1205330f34b1d9feb6a2b8bcde8f6a59b03be1c953e0bbc3151f232e6854e4d0c3af9e4cc94276b1f7f2d6abc
SSDEEP

12288:E0OgCFFre/rqERXqVeP1TIMcrnhTbqboLWJyQ2u2StjuRsUTnzO4/AKKu38G3vxe:zOgCjorqEUV616rnhKkOW/fVQW0J

Score

N/A

Malware Config

Signatures

Files

bdb36925dcf14d6a74ebc8b1f913cea53eefcc5fff3b9d0049f4ed60b2060737
.exe windows x86

1c24a6667231c7b578beea97b7ef02a7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathRemoveExtensionW
PathFindFileNameW
PathIsUNCW
PathStripToRootW
PathFindExtensionW

shell32

ExtractIconW
ShellExecuteW

msvcrt

_ultoa
wcslen
wcscat
wcscmp
strncpy
memmove
__dllonexit
_wcsicmp
_except_handler3
wcscpy
_initterm
wcschr
strtoul
_ltow
malloc
qsort
_wcsnicmp
sprintf
bsearch
isdigit
isupper
free
_ltoa
strncmp
_adjust_fdiv
_onexit

wininet

FtpCommandA

oleacc

LresultFromObject
CreateStdAccessibleObject

rpcrt4

UuidCreate
RpcBindingFromStringBindingW
UuidToStringA
RpcBindingFromStringBindingA

kernel32

VirtualAlloc

ws2_32

WSAGetLastError

Sections

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 718KB - Virtual size: 718KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1c24a6667231c7b578beea97b7ef02a7

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

shell32

msvcrt

wininet

oleacc

rpcrt4

kernel32

ws2_32

Sections

.rsrc Size: 23KB - Virtual size: 23KB

.data Size: 7KB - Virtual size: 2.0MB

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 718KB - Virtual size: 718KB

.reloc Size: 512B - Virtual size: 20B

.rsrc
Size: 23KB - Virtual size: 23KB

.data
Size: 7KB - Virtual size: 2.0MB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 718KB - Virtual size: 718KB

.reloc
Size: 512B - Virtual size: 20B