ffd027e9ee6351c269fe8d0a02b8fe096a7fb04f5d5e098dea8403cbdaafbc9a

Sharing

Copy URL

Twitter E-mail

General

Target

ffd027e9ee6351c269fe8d0a02b8fe096a7fb04f5d5e098dea8403cbdaafbc9a
Size

3.6MB
MD5

cf322b2e639c1d0782725650eea90151
SHA1

914266d7c231e73ef365ee67a4cee74229b9128d
SHA256

ffd027e9ee6351c269fe8d0a02b8fe096a7fb04f5d5e098dea8403cbdaafbc9a
SHA512

fec2197136ae72727e56005ff4d0f8bdf7b8cafd6ff7681581b3a3cf173aa65aae11b2a778d1fa637ca5920f8f8569a213aa8636ffaabeadb20dcb27e7676c74
SSDEEP

98304:HMc+LUMp8hgbVvLaeP252gHSmfvakPodrB1XaPg8Y+K6g/KP7J:HtkUJktLae+52kSLd1AFY+KI

Score

N/A

Malware Config

Signatures

Files

ffd027e9ee6351c269fe8d0a02b8fe096a7fb04f5d5e098dea8403cbdaafbc9a
.exe windows x64

6f47301b0fdec437006d25c9ab3d5bfc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetVolumeInformationW

user32

AdjustWindowRectEx

gdi32

RestoreDC

advapi32

RegDeleteKeyW

shell32

ShellExecuteExW

ole32

OleInitialize

oleaut32

SafeArrayDestroy

comctl32

ImageList_Create

msimg32

AlphaBlend

shlwapi

PathFindFileNameW

uxtheme

DrawThemeBackground

oledlg

OleUIBusyW

gdiplus

GdipCreateFromHDC

oleacc

CreateStdAccessibleObject

imm32

ImmReleaseContext

winmm

PlaySoundW

winspool.drv

ClosePrinter

iphlpapi

GetInterfaceInfo

msvcrt

_wcsnicmp

psapi

GetMappedFileNameW

Sections

.text
Size: 2.2MB - Virtual size: 4.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 247KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f47301b0fdec437006d25c9ab3d5bfc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

msimg32

shlwapi

uxtheme

oledlg

gdiplus

oleacc

imm32

winmm

winspool.drv

iphlpapi

msvcrt

psapi

Sections

.text Size: 2.2MB - Virtual size: 4.3MB

.sedata Size: 1.2MB - Virtual size: 1.2MB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 247KB - Virtual size: 248KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 2.2MB - Virtual size: 4.3MB

.sedata
Size: 1.2MB - Virtual size: 1.2MB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 247KB - Virtual size: 248KB

.sedata
Size: 4KB - Virtual size: 4KB