efe7059f12a023ba89e9ec55bd634fa465784e59b0f53976507daed92214181c

Sharing

Copy URL

Twitter E-mail

General

Target

efe7059f12a023ba89e9ec55bd634fa465784e59b0f53976507daed92214181c
Size

180KB
MD5

6e44fb0179b68b66404c50c38e82c7f0
SHA1

d2ceeaf5b4d16e4c4b89968911b4cf62813b2902
SHA256

efe7059f12a023ba89e9ec55bd634fa465784e59b0f53976507daed92214181c
SHA512

6d3941c2179c2d296203b8a51196779ffc722c816b0a947130ccd3fb24e686cebea631ba193b5bd4ab8282575a2d1b62d41110537272aeffef6c1a715579bcbb
SSDEEP

3072:to7XKvlwuEr/S76niX+TDtBvmu6FYGhlrik5xCm0D55ec8LnCCfS:tu2wbbRjntBxk5L09ocACC

Score

N/A

Malware Config

Signatures

Files

efe7059f12a023ba89e9ec55bd634fa465784e59b0f53976507daed92214181c
.exe windows x86

c0dcac3f5ebe5a3c502a3732c67d7e71

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemWindowsDirectoryW

Exports

Exports

RenameChange
?RenameCommand@@YGPAEPAXJ@Z
?RenameFortation@@YGPAEPAXJ@Z
?RenameHerbal@@YGPAEPAXJ@Z
?RenameLoadMac@@YGPAEPAXJ@Z
?RenameOptimize@@YGPAEPAXJ@Z
?RenameTest@@YGPAEPAXJ@Z

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.conas
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.const
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ts050
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts040
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts030
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts020
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ts010
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0dcac3f5ebe5a3c502a3732c67d7e71

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 25KB - Virtual size: 25KB

.conas Size: 512B - Virtual size: 64B

.const Size: 512B - Virtual size: 64B

.data Size: 3KB - Virtual size: 2KB

.ts050 Size: 22KB - Virtual size: 21KB

.ts040 Size: 29KB - Virtual size: 28KB

.ts030 Size: 29KB - Virtual size: 28KB

.ts020 Size: 29KB - Virtual size: 28KB

.ts010 Size: 36KB - Virtual size: 36KB

.rsrc Size: 2KB - Virtual size: 200KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 25KB - Virtual size: 25KB

.conas
Size: 512B - Virtual size: 64B

.const
Size: 512B - Virtual size: 64B

.data
Size: 3KB - Virtual size: 2KB

.ts050
Size: 22KB - Virtual size: 21KB

.ts040
Size: 29KB - Virtual size: 28KB

.ts030
Size: 29KB - Virtual size: 28KB

.ts020
Size: 29KB - Virtual size: 28KB

.ts010
Size: 36KB - Virtual size: 36KB

.rsrc
Size: 2KB - Virtual size: 200KB

.reloc
Size: 2KB - Virtual size: 1KB