dfbb907021813253116e127457be7383ae7d0a633e02abad0838931feda16633

General

Target

dfbb907021813253116e127457be7383ae7d0a633e02abad0838931feda16633
Size

393KB
MD5

6707f6ded7f1ce71a0a7502c91694a80
SHA1

9268b04af451ed41bacee24e5a28920fdd6d3b7a
SHA256

dfbb907021813253116e127457be7383ae7d0a633e02abad0838931feda16633
SHA512

434b9c13634a5cb7f5e042e18780d210e213b96055afaa9f14754a51a0376f6e0a0b88d09b0ba3a802f9f032266675e279efc0fac4608c316e71acde9b5c3b56
SSDEEP

12288:IrkaIfdyvnRXDKmQ7FNJO4GJ6KAkA1HzwDKQ:IfxpmNBO4GJ9Ak4H

Score

N/A

Malware Config

Signatures

Files

dfbb907021813253116e127457be7383ae7d0a633e02abad0838931feda16633
.exe windows x86

86a50419bbea0c2ea4c3bda608fa4112

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetProcessHeap
GetFileAttributesW
VirtualProtect
CopyFileA
GetModuleHandleA
GetStartupInfoA
lstrcpyA
GetCurrentDirectoryA
GetStdHandle
DisconnectNamedPipe
HeapDestroy
WriteConsoleW
GetPriorityClass
CreatePipe
GetCommandLineA
WriteConsoleW
ResumeThread
lstrlenW
SetEvent
DeleteFileA
WriteConsoleW

mmcndmgr

DllRegisterServer
DllUnregisterServer
DllUnregisterServer
DllRegisterServer

shell32

SHGetSettings
DragFinish
SHGetMalloc
DragQueryFileA
StrChrA
DuplicateIcon
ShellAboutA
ExtractIconA
DragAcceptFiles
SHFree
DllUnregisterServer
SHGetDiskFreeSpaceA
ShellMessageBoxA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 385KB - Virtual size: 888KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 151B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

86a50419bbea0c2ea4c3bda608fa4112

Headers

File Characteristics

Imports

kernel32

mmcndmgr

shell32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 264B

.rsrc Size: 385KB - Virtual size: 888KB

.rdata Size: 512B - Virtual size: 151B

.impdata Size: 512B - Virtual size: 136B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 264B

.rsrc
Size: 385KB - Virtual size: 888KB

.rdata
Size: 512B - Virtual size: 151B

.impdata
Size: 512B - Virtual size: 136B