cfe714916d2da3acd88b5326683e6d4cb411968a3efdc1cda1d8c2a1aa773eda

Sharing

Copy URL Twitter E-mail

General

Target

cfe714916d2da3acd88b5326683e6d4cb411968a3efdc1cda1d8c2a1aa773eda
Size

154KB
MD5

6b1b9bb6174f1c353f291955980c2506
SHA1

c6b75b3bdf9b2c6a053188926ed22dbf1a82f01d
SHA256

cfe714916d2da3acd88b5326683e6d4cb411968a3efdc1cda1d8c2a1aa773eda
SHA512

24d93883118ae45cc453cb9cb0ddf38dcb0cf003a3d5c6a5d3e8d2b4cddfd8a7ad9c80614e563e7bef4c53a781c34994ea10e076476a268fc8cb4b553fefae7e
SSDEEP

3072:2P3QGjUGmVJNciVqOh2dWP73uFE0pQ/iMnp39:G3QQoe2qOEMyjqi6p

Score

N/A

Malware Config

Signatures

Files

cfe714916d2da3acd88b5326683e6d4cb411968a3efdc1cda1d8c2a1aa773eda
.exe windows x86

a16dd009f28d0ba2ba9ff4da80a6319f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
EscapeCommFunction
SetPriorityClass
lstrlenW
GlobalGetAtomNameW
FormatMessageW
LoadLibraryExW
GetDateFormatA
VirtualAlloc
GetFileAttributesExA
GetStartupInfoA
GetThreadPriority
lstrcpynA
TransactNamedPipe
IsValidLanguageGroup
GetUserDefaultUILanguage
FindFirstFileW
CreateFileA
CancelWaitableTimer
SizeofResource
IsBadWritePtr
SetFilePointer
SetThreadAffinityMask
EnumResourceTypesA
VirtualProtect
GetThreadLocale
FormatMessageA
DeleteAtom
AddAtomW
HeapLock
FindNextFileW
GetTimeFormatW
FindResourceW
SetThreadContext
SleepEx
HeapReAlloc
GetFullPathNameW
lstrlenA
FindNextChangeNotification
GlobalMemoryStatus
GetTempPathA
GetDateFormatW
OpenSemaphoreW
SetCommTimeouts
GetVersionExW
RemoveDirectoryA
SetCommMask
GetSystemDirectoryA
GetLongPathNameW
HeapValidate
FindCloseChangeNotification
WaitForSingleObjectEx
GlobalFindAtomW
GlobalGetAtomNameA
IsDBCSLeadByteEx
SystemTimeToFileTime
SetThreadLocale
FlushFileBuffers
FlushViewOfFile
VirtualFree
GetSystemDefaultLangID
HeapFree
CompareStringW
GetFileAttributesA
GetFullPathNameA
GetVersionExA
DeleteFileW
FileTimeToLocalFileTime
VirtualQuery
LCMapStringW
MoveFileExW
GetTempPathW
GetTickCount
GetCommProperties
GetModuleHandleW
GetTimeZoneInformation
CreateMutexW
GlobalFree
DisconnectNamedPipe
GetSystemTimeAsFileTime
MultiByteToWideChar
RtlUnwind
AddAtomA
OpenEventA
GlobalAlloc
GetTempFileNameA
GetWindowsDirectoryA
LoadLibraryExA
GetComputerNameExW
GetSystemInfo
GetFileSize
GetComputerNameExA
FreeResource
ReadFile
LockFile
FindNextFileA
ResumeThread
GetNumberFormatA
GetAtomNameW
GetOverlappedResult
MoveFileW
GetThreadContext
GlobalReAlloc
GlobalCompact
GetShortPathNameW
PulseEvent
TlsFree
ConnectNamedPipe
CreateFileMappingW
EnumSystemLocalesA
EnumResourceNamesW
CreateNamedPipeA
GlobalUnlock
Sleep
IsBadStringPtrW
DuplicateHandle
GetComputerNameA
SuspendThread
GetCommConfig
OpenFile
GetSystemTimeAdjustment
ConvertDefaultLocale
SetHandleInformation
WaitForMultipleObjectsEx
GetLocalTime
GetCurrentThreadId
RegisterWaitForSingleObject
CreateSemaphoreW
GetModuleFileNameW
FileTimeToDosDateTime
lstrcpynW
LoadResource
LoadLibraryA
SetHandleCount
CreateFileW
ResetEvent
CreateDirectoryW
TryEnterCriticalSection
GetCPInfo
ReleaseMutex
SetUnhandledExceptionFilter
SetFileApisToOEM
GetNumberFormatW
EnumResourceNamesA
OpenFileMappingW
LeaveCriticalSection
GetCommandLineA
lstrcmpiW
lstrcatW
GetStartupInfoW
IsBadReadPtr
GetFileAttributesW
FindFirstFileA
GetSystemDefaultUILanguage
SetTimerQueueTimer
FoldStringW
CreateWaitableTimerW
GetStdHandle
IsBadCodePtr
HeapSize
GetWindowsDirectoryW
QueryDosDeviceW
SetSystemTimeAdjustment
HeapAlloc
SetSystemTime
DefineDosDeviceW
CallNamedPipeW
GetSystemTime
lstrcmpiA
DeleteFileA
FindResourceExA
MoveFileA
GetPriorityClass
GetFileAttributesExW

Exports

Exports

?buildPreference@@YGEUsimulatecorW@@@Z

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.kmd1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kmd2
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kmd3
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kmd4
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a16dd009f28d0ba2ba9ff4da80a6319f

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 44KB

.kmd1 Size: 4KB - Virtual size: 4KB

.kmd2 Size: 512B - Virtual size: 128B

.kmd3 Size: 512B - Virtual size: 128B

.data Size: 28KB - Virtual size: 28KB

.kmd4 Size: 25KB - Virtual size: 24KB

.rsrc Size: 48KB - Virtual size: 47KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 44KB - Virtual size: 44KB

.kmd1
Size: 4KB - Virtual size: 4KB

.kmd2
Size: 512B - Virtual size: 128B

.kmd3
Size: 512B - Virtual size: 128B

.data
Size: 28KB - Virtual size: 28KB

.kmd4
Size: 25KB - Virtual size: 24KB

.rsrc
Size: 48KB - Virtual size: 47KB

.reloc
Size: 2KB - Virtual size: 1KB