cfc0223deb329dcce82c0959f987620ecd5cd90bd89d500feb09192bffbf421c

Sharing

Copy URL Twitter E-mail

General

Target

cfc0223deb329dcce82c0959f987620ecd5cd90bd89d500feb09192bffbf421c
Size

267KB
MD5

7c72bc31d4f780ee66f055228658f4d0
SHA1

ccdb5ee99f789164c52a434f448654cdef929c7a
SHA256

cfc0223deb329dcce82c0959f987620ecd5cd90bd89d500feb09192bffbf421c
SHA512

cc078d4016466ba8549e780ed54d2d4c9679abea604a8550d67f3242eb63f2fe57f3be8db98d733eb091fda8094fbb889805d4987b22f646d69907f98980ce75
SSDEEP

6144:k+oM2L4wKn5Yzzin+TimbgCg3GKukUrKqPcxOeIv2b:k+oM2EwKn5YzziWbdqpZYO

Score

N/A

Malware Config

Signatures

Files

cfc0223deb329dcce82c0959f987620ecd5cd90bd89d500feb09192bffbf421c
.exe windows x86

83c1248d156fb1739d95e461404c4c39

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeNameService
OffsetRect
GetLastInputInfo
IsIconic
IsDialogMessageW
DdeSetQualityOfService
DdeSetUserHandle
CheckDlgButton
ArrangeIconicWindows
GetCursorPos
GetSystemMetrics
GetMenu

shell32

ShellExecuteExA
ShellAboutA
DoEnvironmentSubstW
ExtractAssociatedIconA
ShellExecuteA
DragQueryFileW
ExtractIconExA

ole32

OleCreateLinkToFileEx
StgIsStorageFile
CoIsHandlerConnected
OleRegGetUserType
IIDFromString
OleCreateLinkToFile
OleCreateStaticFromData
CLSIDFromProgID

advapi32

SetServiceStatus
DuplicateToken
IsValidSecurityDescriptor
DeregisterEventSource
RegisterServiceCtrlHandlerA
AccessCheck
RegQueryValueExA
GetCurrentHwProfileW
RegDeleteKeyA
BackupEventLogA

wininet

InternetAttemptConnect
FtpRenameFileA
InternetHangUp
InternetConnectA
FtpGetFileW

kernel32

HeapSize
LoadLibraryW
IsProcessorFeaturePresent
RtlUnwind
LCMapStringW
GetCurrentProcessId
GetConsoleCP
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
GetStdHandle
WriteFile
GetConsoleMode
FlushFileBuffers
SetFilePointer
CompareStringW
SetEnvironmentVariableA
CloseHandle
WriteConsoleW
SetStdHandle
CreateFileW
GetTickCount
SetUnhandledExceptionFilter
ExitProcess
HeapCreate
GetTimeZoneInformation
WideCharToMultiByte
MultiByteToWideChar
CallNamedPipeA
FindFirstChangeNotificationA
IsDBCSLeadByteEx
EraseTape
QueryDosDeviceW
InterlockedDecrement
InterlockedIncrement
GetTimeFormatA
GetDateFormatA
GetLastError
HeapReAlloc
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetCommandLineA
HeapSetInformation
GetStartupInfoW
GetCPInfo
UnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
TerminateProcess
GetCurrentProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
SetLastError
GetCurrentThreadId
GetProcAddress
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetACP
GetOEMCP
IsValidCodePage
Sleep
GetUserDefaultLCID
GetLocaleInfoW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW

Sections

.text
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 159KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83c1248d156fb1739d95e461404c4c39

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

wininet

kernel32

Sections

.text Size: 85KB - Virtual size: 84KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 4KB - Virtual size: 12KB

.rsrc Size: 159KB - Virtual size: 159KB

.text
Size: 85KB - Virtual size: 84KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 4KB - Virtual size: 12KB

.rsrc
Size: 159KB - Virtual size: 159KB