cb6c01956c47116b7a9077b4dcd9a33484f3477425f119bcc1b66f9b18e41510

Sharing

Copy URL

Twitter E-mail

General

Target

cb6c01956c47116b7a9077b4dcd9a33484f3477425f119bcc1b66f9b18e41510
Size

153KB
MD5

2588403e408d129a69ff42ee84b9dfb5
SHA1

9a9099c8f5993c8f0729e9775382f4d13095c0f6
SHA256

cb6c01956c47116b7a9077b4dcd9a33484f3477425f119bcc1b66f9b18e41510
SHA512

19ce45ca6ad6c877b16ee2cb55e33eafb4d7e67a4ab96318642488778cd7ddb9f1a83cd48afec817fb919ce79b0a8e31662f400b0146f41db108b77c70e4baaf
SSDEEP

3072:WvBPZWv68lNtdA0l+PoomoiRMST/L/KVghmsi7N2NtFO/NGkY9qJ:+PZn8lNtQfmPGST/L/qF7IdO/koJ

Score

N/A

Malware Config

Signatures

Files

cb6c01956c47116b7a9077b4dcd9a33484f3477425f119bcc1b66f9b18e41510
.exe windows x86

acefc6a1829ff9e17f31e37b345c0820

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
SetFilePointer
GetExitCodeProcess
GetSystemDirectoryA
_lclose
_llseek
SizeofResource
ExpandEnvironmentStringsA
FindResourceA
SetEvent
ExitProcess
LocalFileTimeToFileTime
MulDiv
GetCurrentThreadId
ResetEvent
GetPrivateProfileIntA
GlobalLock
DosDateTimeToFileTime
GetShortPathNameA
GetPrivateProfileStringA
GlobalAlloc
GetStartupInfoA
SetConsoleIcon
LoadLibraryExA
WritePrivateProfileStringA
DeleteFileA
GetCurrentDirectoryA
CreateFileA
SetFileAttributesA
GetSystemTimeAsFileTime
WaitForSingleObject
GetSystemInfo
SetFileTime
GetModuleFileNameA
FormatMessageA
IsDBCSLeadByte
LockResource
FreeLibrary
GetCommandLineA
GetFileAttributesA
SetCurrentDirectoryA
GetTempFileNameA
CreateThread
WriteFile
FreeResource
lstrcpynA
CreateEventA
GetWindowsDirectoryA
GetVolumeInformationA
GetVersionExA
FindFirstFileA
CreateMutexA
GlobalUnlock
EnumResourceLanguagesA
GlobalFree
ReadFile
QueryPerformanceCounter
lstrlenA
lstrcpyA
lstrcmpA
lstrcmpiA
GetDriveTypeA
GetModuleHandleA
_lopen
FindNextFileA
GetCurrentProcess
GetProcAddress
GetCurrentProcessId
GetDiskFreeSpaceA
CreateProcessA
GetTickCount
lstrcatA
LoadResource
GetTempPathA
TerminateThread
CreateDirectoryA
RemoveDirectoryA

gdi32

RemoveFontResourceW
OffsetRgn
GetFontResourceInfoW
GetTextExtentExPointW
AddFontResourceW

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 130KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

acefc6a1829ff9e17f31e37b345c0820

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

version

Sections

.text Size: 9KB - Virtual size: 9KB

.data Size: 9KB - Virtual size: 59KB

.rsrc Size: 2KB - Virtual size: 1KB

.edata Size: 130KB - Virtual size: 183KB

.xdata Size: 1024B - Virtual size: 4KB

.text
Size: 9KB - Virtual size: 9KB

.data
Size: 9KB - Virtual size: 59KB

.rsrc
Size: 2KB - Virtual size: 1KB

.edata
Size: 130KB - Virtual size: 183KB

.xdata
Size: 1024B - Virtual size: 4KB