353a35fe5eb678d81025e68e403531c31671e7899310cc56f148cc3e03ef8d96

General

Target

353a35fe5eb678d81025e68e403531c31671e7899310cc56f148cc3e03ef8d96
Size

394KB
MD5

a15e541721cfd00d070aac75799ac500
SHA1

94786631a7864c4a54b2bffb47f8f6b4a47df833
SHA256

353a35fe5eb678d81025e68e403531c31671e7899310cc56f148cc3e03ef8d96
SHA512

c82e26c27f47e9b5e7bcdde921a62493e434cf74a6a7e3eb4a35d6159566c1bfadc9567fe9c53d3eca1737315dea3b60f35c27c10cfcca597a9c44c7871ea0a2
SSDEEP

12288:TuhkaIfdyvnRXDKmQ7FNJO4GJ6KAkA1HzwDKQ:ixpmNBO4GJ9Ak4H

Score

N/A

Malware Config

Signatures

Files

353a35fe5eb678d81025e68e403531c31671e7899310cc56f148cc3e03ef8d96
.exe windows x86

fd3d1d97fcedf76e62e9294f32376c2b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPriorityClass
ResumeThread
WriteConsoleW
GetCurrentDirectoryA
DisconnectNamedPipe
SetEvent
DeleteFileA
GetStartupInfoA
lstrcpyA
WriteConsoleW
HeapDestroy
GetCommandLineA
WriteConsoleW
CreatePipe
GetStdHandle
lstrlenW
GetModuleHandleA
VirtualProtect
GetFileAttributesW
CopyFileA
GetProcessHeap

mmcndmgr

DllUnregisterServer
DllUnregisterServer
DllRegisterServer
DllRegisterServer

shell32

DllUnregisterServer
ShellAboutA
DragAcceptFiles
DragQueryFileA
SHGetSettings
SHGetMalloc
DragFinish
ShellMessageBoxA
SHFree
ExtractIconA
SHGetDiskFreeSpaceA
StrChrA
DuplicateIcon

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 387KB - Virtual size: 888KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 195B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fd3d1d97fcedf76e62e9294f32376c2b

Headers

File Characteristics

Imports

kernel32

mmcndmgr

shell32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 264B

.rsrc Size: 387KB - Virtual size: 888KB

.rdata Size: 512B - Virtual size: 177B

.impdata Size: 512B - Virtual size: 195B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 264B

.rsrc
Size: 387KB - Virtual size: 888KB

.rdata
Size: 512B - Virtual size: 177B

.impdata
Size: 512B - Virtual size: 195B