cf3080bf09de3ffd0c81e648be830a8c85560c3316daf9205094e73f4eadaa96

Sharing

Copy URL Twitter E-mail

General

Target

cf3080bf09de3ffd0c81e648be830a8c85560c3316daf9205094e73f4eadaa96
Size

201KB
MD5

72623a7c8d022530b5f670edfe01ca97
SHA1

b8029d6b39c3f3afde4cfde3b6f057ddb72e47f4
SHA256

cf3080bf09de3ffd0c81e648be830a8c85560c3316daf9205094e73f4eadaa96
SHA512

4190ba1b0ad9ef7954f5d5a1ee908d35a0ee7d71c3466345369365cda5d5df124209e7e273d8cf6a83dfa0d65fce6bd2341b37f5ae5f4359d685cdb2806ba463
SSDEEP

6144:wbH+6/WWzJn1p7TxaL06GWJVGjF9yZ+V:WePWzF1pnxA06GWJVq9i+

Score

N/A

Malware Config

Signatures

Files

cf3080bf09de3ffd0c81e648be830a8c85560c3316daf9205094e73f4eadaa96
.exe windows x86

ab793f1c61b0791b379306c1f4758611

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ChangeClipboardChain
EnableMenuItem
PeekMessageA
InSendMessageEx
SetWindowLongA
TrackPopupMenuEx
IsCharAlphaNumericW
GetDC
GetIconInfo
MessageBeep
RemovePropW
DestroyAcceleratorTable
ShowOwnedPopups
CharToOemBuffA
IsCharAlphaNumericA
GetWindowThreadProcessId
LoadMenuW
OpenWindowStationA
OffsetRect
DdeAddData
CreateDialogParamA
GetClipboardOwner
AdjustWindowRectEx
FindWindowExW
GetMenuStringA
SetWindowsHookExA
DispatchMessageW
OemToCharBuffA
CheckMenuItem
DefWindowProcW
CallWindowProcW
DialogBoxIndirectParamA
ShowWindow
EnumWindowStationsW
CharUpperW
MapVirtualKeyExW
CharUpperBuffA
RegisterClipboardFormatA
CharLowerW
GetClassInfoExW
SetMenuItemBitmaps
DialogBoxIndirectParamW
MapVirtualKeyW
InvertRect
GetDesktopWindow
CheckDlgButton
DdeQueryStringA
SendMessageW
SetMenuItemInfoW
EndTask

gdi32

GetFontData
GetTextAlign
GetTextExtentPointA
CreateRoundRectRgn
GetDIBits
SetPaletteEntries

ntdll

_aulldiv
_allshl
_allmul

Exports

Exports

?FoodActaMautglopThudCloyechtaa@@YGXPCJU_SECURITY_DESCRIPTOR@@UProfVote@@PC_J@Z

Sections

.text
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Khetby
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dugen
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.moswo
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rhospa
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Everid
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pupba
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Cohooy
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bosen
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab793f1c61b0791b379306c1f4758611

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

ntdll

Exports

Exports

Sections

.text Size: 62KB - Virtual size: 62KB

.Khetby Size: 8KB - Virtual size: 8KB

.dugen Size: 6KB - Virtual size: 5KB

.moswo Size: 6KB - Virtual size: 5KB

.Rhospa Size: 10KB - Virtual size: 9KB

.Everid Size: 7KB - Virtual size: 7KB

.data Size: 13KB - Virtual size: 13KB

.pupba Size: 23KB - Virtual size: 22KB

.Cohooy Size: 14KB - Virtual size: 14KB

.edata Size: 14KB - Virtual size: 14KB

.bosen Size: 11KB - Virtual size: 11KB

.rsrc Size: 22KB - Virtual size: 22KB

.text
Size: 62KB - Virtual size: 62KB

.Khetby
Size: 8KB - Virtual size: 8KB

.dugen
Size: 6KB - Virtual size: 5KB

.moswo
Size: 6KB - Virtual size: 5KB

.Rhospa
Size: 10KB - Virtual size: 9KB

.Everid
Size: 7KB - Virtual size: 7KB

.data
Size: 13KB - Virtual size: 13KB

.pupba
Size: 23KB - Virtual size: 22KB

.Cohooy
Size: 14KB - Virtual size: 14KB

.edata
Size: 14KB - Virtual size: 14KB

.bosen
Size: 11KB - Virtual size: 11KB

.rsrc
Size: 22KB - Virtual size: 22KB