2ff0c0b56ebbefc7d91e7aa97c3143a78459a6a7d4aaca809afc88f931e29101

Sharing

Copy URL Twitter E-mail

General

Target

2ff0c0b56ebbefc7d91e7aa97c3143a78459a6a7d4aaca809afc88f931e29101
Size

2.7MB
MD5

795535d0b4b27d00ccaf14ee4eb7fcff
SHA1

99a36d609edfecd4e02316a2f61b8ba944f0f24c
SHA256

2ff0c0b56ebbefc7d91e7aa97c3143a78459a6a7d4aaca809afc88f931e29101
SHA512

f3d1017c4819f93580d89dd598ec9f5ca6cbee82c19a25b91bd6a2c0cda35bf824faebf154d6246e1bc495de207316d2409902c47d6ef6b82548931be97f01a9
SSDEEP

49152:idVF/sdttukNFMWW2qc17YWsnKpq2T4oysxc4rEI0tXrg1T1YlcaedcaxaeR:AHkdtt5MWlqc17vsj2T6sGKBMg15YlcZ

Score

N/A

Malware Config

Signatures

Files

2ff0c0b56ebbefc7d91e7aa97c3143a78459a6a7d4aaca809afc88f931e29101
.exe windows x86

27f4674fd1225c8da9b38fe9fcd2a647

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextFileA
GetModuleHandleA
LoadLibraryA
VirtualAlloc
VirtualFree
GetModuleFileNameA
ExitProcess

user32

CopyAcceleratorTableA

gdi32

SetWindowExtEx

winmm

midiStreamRestart

winspool.drv

DocumentPropertiesA

advapi32

RegDeleteValueA

shell32

ShellExecuteA

ole32

CoRevokeClassObject

oleaut32

SysAllocStringByteLen

comctl32

ord17

oledlg

ord8

ws2_32

recvfrom

comdlg32

GetOpenFileNameA

Sections

.text
Size: - Virtual size: 641KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dat0
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dat1
Size: - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dat2
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27f4674fd1225c8da9b38fe9fcd2a647

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

oledlg

ws2_32

comdlg32

Sections

.text Size: - Virtual size: 641KB

.rdata Size: - Virtual size: 1.1MB

.data Size: - Virtual size: 202KB

.dat0 Size: 36KB - Virtual size: 33KB

.dat1 Size: - Virtual size: 1.4MB

.dat2 Size: 2.6MB - Virtual size: 2.6MB

.rsrc Size: 36KB - Virtual size: 33KB

.text
Size: - Virtual size: 641KB

.rdata
Size: - Virtual size: 1.1MB

.data
Size: - Virtual size: 202KB

.dat0
Size: 36KB - Virtual size: 33KB

.dat1
Size: - Virtual size: 1.4MB

.dat2
Size: 2.6MB - Virtual size: 2.6MB

.rsrc
Size: 36KB - Virtual size: 33KB