2f3069d84ae69059afc8d538f4cfd3f8e1f03c0f81dfa04a46ee4aa06328fa05

General

Target

2f3069d84ae69059afc8d538f4cfd3f8e1f03c0f81dfa04a46ee4aa06328fa05
Size

112KB
MD5

66fd50d8a33b7aa4314f17de3289d970
SHA1

9a328eb1bceb3bb8916a59aafdc726c03612e05f
SHA256

2f3069d84ae69059afc8d538f4cfd3f8e1f03c0f81dfa04a46ee4aa06328fa05
SHA512

b7119efec7ca59708f5173fdbda55c4bb53f7da8d4830d7ed205514c8fb85811424852681e6d7a5654172fba7e399440750e0ed60e3a21d590626fb0b6259c98
SSDEEP

3072:yQac1VNKZTTzVVu8OdTsCvdQDJP8dkpNFX4m1+1FjlK:yQacgLVVudQCvdO8KpT4m1K

Score

N/A

Malware Config

Signatures

Files

2f3069d84ae69059afc8d538f4cfd3f8e1f03c0f81dfa04a46ee4aa06328fa05
.exe windows x86

da2baa5e2f22bd070d1852c869af5bce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapCreate
GetModuleHandleA
SetEvent
WriteConsoleW
GetCurrentDirectoryA
GetStdHandle
GetFileAttributesA
IsDebuggerPresent
GetLastError
ClearCommBreak
CopyFileW
SuspendThread
lstrcpyW
DisconnectNamedPipe
CreatePipe
GetPriorityClass
GetStartupInfoA
WriteConsoleW
lstrlenW
WriteConsoleW
CloseHandle

msftedit

RichEditWndProc
RichComboBoxWndProc
RichListBoxWndProc
SetCustomTextOutHandlerEx

shell32

DllUnregisterServer
StrChrA
SHFree
ShellAboutA
DragFinish
DragQueryFileA
SHGetMalloc
ExtractIconA
ShellMessageBoxA
SHGetSettings
DuplicateIcon
DragAcceptFiles
SHGetDiskFreeSpaceA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

da2baa5e2f22bd070d1852c869af5bce

Headers

File Characteristics

Imports

kernel32

msftedit

shell32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 8KB

.data Size: 1024B - Virtual size: 752B

.rsrc Size: 103KB - Virtual size: 103KB

.rdata Size: 512B - Virtual size: 132B

.impdata Size: 512B - Virtual size: 80B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 8KB

.data
Size: 1024B - Virtual size: 752B

.rsrc
Size: 103KB - Virtual size: 103KB

.rdata
Size: 512B - Virtual size: 132B

.impdata
Size: 512B - Virtual size: 80B