c7dbea3833dc870f4e7e0760136db8f279bb1aab10ef462d24d7434b70727758

General

Target

c7dbea3833dc870f4e7e0760136db8f279bb1aab10ef462d24d7434b70727758
Size

22KB
MD5

83c4e300b51b42691b8d695106999645
SHA1

54145e54fd2d9e98347230e0d8f9cc49d0b9de66
SHA256

c7dbea3833dc870f4e7e0760136db8f279bb1aab10ef462d24d7434b70727758
SHA512

8a7d569d46eb9a3443ee790c251ea7b7a5abd665d86b70f2a1c77a9c8cd6ff379fa6681cc1e3a21d683dbab3135da54e6ffb03d815dd54f68ed52e6928214421
SSDEEP

384:at2olL2aKvZozpcxTnns0yCbsD7eZM2j7j412VCV5fT+A0VPXh+C3pTn2bN:aPUhoexTnnsRCwIM2Pk95fuPPn2bN

Score

N/A

Malware Config

Signatures

Files

c7dbea3833dc870f4e7e0760136db8f279bb1aab10ef462d24d7434b70727758
.exe windows x86

bc6eef59efdebf05316d611d7452ca93

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHCoCreateInstance
DAD_DragLeave
DAD_DragMove
Shell_GetImageLists
DAD_DragEnterEx
DragFinish
DllInstall
IsLFNDrive
PifMgr_OpenProperties
DllGetClassObject
DuplicateIcon
DragAcceptFiles
DllRegisterServer
DllCanUnloadNow
SHDefExtractIconW
DllGetVersion
SHILCreateFromPath

kernel32

ExitProcess
GetModuleHandleA
HeapSize
SetConsoleWindowInfo
GetCurrentProcess
Sleep
LockResource
EnumResourceNamesA
LocalFree
InitializeCriticalSection
GetProcessHeap
GetProcAddress
InterlockedIncrement
GetCurrentProcessId
WriteFile
HeapAlloc
SizeofResource
FreeLibrary
SetUnhandledExceptionFilter
InterlockedDecrement
CloseHandle
SetLastError
MultiByteToWideChar
LeaveCriticalSection
TerminateProcess
GetTickCount
EnumResourceTypesA
VirtualAlloc
UnhandledExceptionFilter
GetCurrentThreadId
GetLastError
GetSystemTimeAsFileTime
EnterCriticalSection
QueryPerformanceCounter
SetConsolePalette
LoadResource
FindResourceA
LoadLibraryA
WideCharToMultiByte
EndUpdateResourceA
HeapFree
DeleteCriticalSection
FreeResource

Sections

.textbss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.debug
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc6eef59efdebf05316d611d7452ca93

Headers

File Characteristics

Imports

shell32

kernel32

Sections

.textbss Size: - Virtual size: 12KB

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 3KB - Virtual size: 2KB

.rsrc Size: 6KB - Virtual size: 6KB

.debug Size: 3KB - Virtual size: 3KB

.textbss
Size: - Virtual size: 12KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 6KB - Virtual size: 6KB

.debug
Size: 3KB - Virtual size: 3KB