c5e355b52c362e165f3185041bf3b26a8a11329103d3ecc7e7f180a915b689db

Sharing

Copy URL Twitter E-mail

General

Target

c5e355b52c362e165f3185041bf3b26a8a11329103d3ecc7e7f180a915b689db
Size

5.2MB
MD5

91fabbd6107b8144c6e30b31c3cc2344
SHA1

e502b248a8fe15d4330bd797765bf5e439487b96
SHA256

c5e355b52c362e165f3185041bf3b26a8a11329103d3ecc7e7f180a915b689db
SHA512

c9998884966dfce76d96012424c98def44ef10e85641ac5b880de9deb2ca04690809971956985def2115277b391893939c6e406194a3d0658204605cdd73af61
SSDEEP

98304:tcaT9hpzkocmV3IeoHcmoP1l1QATWdeoDncl/1anMJgACavpSFlpdRDdB51QCTZ6:L9zMM3Ieoxod3QKWdfDnk/MMWAXpIF1e

Score

N/A

Malware Config

Signatures

Files

c5e355b52c362e165f3185041bf3b26a8a11329103d3ecc7e7f180a915b689db
.exe windows x86

506ba384c13419ceaf7b9b2d59fa44bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
LoadLibraryA
GetProcAddress
SetLastError
SleepEx
Sleep
GetLogicalDrives
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
SetEndOfFile
HeapReAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
SetFilePointer
ReadFile
SetHandleCount
GetStdHandle
GetFileType
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
SetStdHandle
FlushFileBuffers
HeapAlloc
CloseHandle
CreateFileA
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
LCMapStringW

user32

SetActiveWindow

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.7MB - Virtual size: 66.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

COLDREX
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLIN0
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINA
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINB
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINC
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLIND
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINE
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINF
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLING
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINH
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINI
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINJ
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINP
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINQ
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINR
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINS
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINT
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINU
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINV
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINW
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINX
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINZ
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DRIBLINY
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 272KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

506ba384c13419ceaf7b9b2d59fa44bf

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 36KB - Virtual size: 35KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 2.7MB - Virtual size: 66.8MB

COLDREX Size: 4KB - Virtual size: 4B

DRIBLIN0 Size: 4KB - Virtual size: 4B

DRIBLINA Size: 4KB - Virtual size: 4B

DRIBLINB Size: 4KB - Virtual size: 4B

DRIBLINC Size: 4KB - Virtual size: 4B

DRIBLIND Size: 4KB - Virtual size: 4B

DRIBLINE Size: 4KB - Virtual size: 4B

DRIBLINF Size: 4KB - Virtual size: 4B

DRIBLING Size: 4KB - Virtual size: 4B

DRIBLINH Size: 4KB - Virtual size: 8B

DRIBLINI Size: 4KB - Virtual size: 4B

DRIBLINJ Size: 4KB - Virtual size: 4B

DRIBLINP Size: 4KB - Virtual size: 4B

DRIBLINQ Size: 4KB - Virtual size: 4B

DRIBLINR Size: 4KB - Virtual size: 4B

DRIBLINS Size: 4KB - Virtual size: 4B

DRIBLINT Size: 4KB - Virtual size: 4B

DRIBLINU Size: 4KB - Virtual size: 4B

DRIBLINV Size: 4KB - Virtual size: 4B

DRIBLINW Size: 4KB - Virtual size: 4B

DRIBLINX Size: 4KB - Virtual size: 4B

DRIBLINZ Size: 4KB - Virtual size: 4B

DRIBLINY Size: 4KB - Virtual size: 4B

.rsrc Size: 272KB - Virtual size: 268KB

.text
Size: 36KB - Virtual size: 35KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 2.7MB - Virtual size: 66.8MB

COLDREX
Size: 4KB - Virtual size: 4B

DRIBLIN0
Size: 4KB - Virtual size: 4B

DRIBLINA
Size: 4KB - Virtual size: 4B

DRIBLINB
Size: 4KB - Virtual size: 4B

DRIBLINC
Size: 4KB - Virtual size: 4B

DRIBLIND
Size: 4KB - Virtual size: 4B

DRIBLINE
Size: 4KB - Virtual size: 4B

DRIBLINF
Size: 4KB - Virtual size: 4B

DRIBLING
Size: 4KB - Virtual size: 4B

DRIBLINH
Size: 4KB - Virtual size: 8B

DRIBLINI
Size: 4KB - Virtual size: 4B

DRIBLINJ
Size: 4KB - Virtual size: 4B

DRIBLINP
Size: 4KB - Virtual size: 4B

DRIBLINQ
Size: 4KB - Virtual size: 4B

DRIBLINR
Size: 4KB - Virtual size: 4B

DRIBLINS
Size: 4KB - Virtual size: 4B

DRIBLINT
Size: 4KB - Virtual size: 4B

DRIBLINU
Size: 4KB - Virtual size: 4B

DRIBLINV
Size: 4KB - Virtual size: 4B

DRIBLINW
Size: 4KB - Virtual size: 4B

DRIBLINX
Size: 4KB - Virtual size: 4B

DRIBLINZ
Size: 4KB - Virtual size: 4B

DRIBLINY
Size: 4KB - Virtual size: 4B

.rsrc
Size: 272KB - Virtual size: 268KB