ddf2d1d73a12778441d2c4827d70d6f219f14c9354eca837846bbf3f8cf6c660

Sharing

Copy URL Twitter E-mail

General

Target

ddf2d1d73a12778441d2c4827d70d6f219f14c9354eca837846bbf3f8cf6c660
Size

716KB
MD5

1036d6deb07fe3a5ddc0f4b704cf96a2
SHA1

2470f32c843cbe48a37bd3972afc83f0da624e0e
SHA256

ddf2d1d73a12778441d2c4827d70d6f219f14c9354eca837846bbf3f8cf6c660
SHA512

adfc7783978d47769ed6ca511ab0b1459399d8e4dedac9d24ae6e394363cb13342a4bf426a28b54b750154533a6cde95398284cb7cf0afa617532c9a2248525b
SSDEEP

12288:6n1qBvjVUOGEnqm8jvNInM8o16iyBf6XJDQy44NvBgmPrJQ4:6nyVUZEnqm8jvNInM8o16iyBf6XJDQyx

Score

N/A

Malware Config

Signatures

Files

ddf2d1d73a12778441d2c4827d70d6f219f14c9354eca837846bbf3f8cf6c660
.exe windows x86

2e9cf6a5ef1a612fbc9a3a244f0c9e34

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

salflibc

__throw_temporary_ptr
__SALFORD_MAP
__undefined_function
F77INIT#
OPEN##
RSF1##
I2#RSF
WSF2#
CLOS##
__add_hypertext_resource
CH#RSF
CONCAT#
WDF1##
TRIMR#
NONBLK
D8#RSF
I4#RSF
EDATE#
CURDIR#
CLEARWIN_INFO#
__yield_program_control
WINDOW_PRINTF##
EXIT#
WINDOW_PRINTF#
RGB#
CLEARWIN_STRING#
WINDOW_UPDATE#
WSF1##
CH#WSF
CNUM
__ADJUST_STACK
CCOPY#
GET_FILTERED_FILE#
TRIM#
UPCASE#
INQR##
FILE_SIZE#
__add_focus_monitor
WINIO#
__set_highlighted
D8#WSF
I4#WSF
__set_cursor_waiting
R4#RSF
R4#WSF
XXRJ##
OPENR#
READFA#
CLOSEF#
CCOMP#
START_PROCESS#
START_PPROCESS#
RSORT#
OPENRW#
GetVersion
__init_cpplib_info
GetModuleFileNameA
__get_main_arguments
strlwr
__vd_info_address
__special_flags_address
__get_virtual_common_block
strcat
__General_shared_address
LIBMAIN#
__WindowsType_address
__init_WindowsType
__initialise_cpplib
GetWindow
__errno_address
__stdin_address
__salf_exception_handler
__stdout_address
__stderr_address
__cout_address
__cin_address
sprintf
__cerr_address
____console_stdin_address
exit
____console_stdout_address
____console_stderr_address
strerror
__initialise_sccdll
__ctype_ptr_address
_scc_lib_version
mprintf0
__Register_map_info
WinMain
__Put_exception_title
GetLastError
LibMain
GetModuleHandleA
__Put_exception_message

kernel32

DeleteFileA

user32

BringWindowToTop
GetKeyState
GetSysColor
SetFocus
SetWindowPos
ShowWindow
keybd_event

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 6.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.comment
Size: 512B - Virtual size: 255B

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.CRT
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.salfmap
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.salfsys
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.salfvc
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 352KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2e9cf6a5ef1a612fbc9a3a244f0c9e34

Headers

File Characteristics

Imports

salflibc

kernel32

user32

Sections

.text Size: 156KB - Virtual size: 155KB

.bss Size: - Virtual size: 6.1MB

.comment Size: 512B - Virtual size: 255B

.data Size: 50KB - Virtual size: 49KB

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 148KB - Virtual size: 148KB

.CRT Size: 512B - Virtual size: 12B

.salfmap Size: 4KB - Virtual size: 3KB

.salfsys Size: 512B - Virtual size: 24B

.salfvc Size: 512B - Virtual size: 44B

.reloc Size: 352KB - Virtual size: 352KB

.text
Size: 156KB - Virtual size: 155KB

.bss
Size: - Virtual size: 6.1MB

.comment
Size: 512B - Virtual size: 255B

.data
Size: 50KB - Virtual size: 49KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 148KB - Virtual size: 148KB

.CRT
Size: 512B - Virtual size: 12B

.salfmap
Size: 4KB - Virtual size: 3KB

.salfsys
Size: 512B - Virtual size: 24B

.salfvc
Size: 512B - Virtual size: 44B

.reloc
Size: 352KB - Virtual size: 352KB