cf75f254efd6d9014ae12251022b4c829c3a65165e2a6afc03b4d7149101a0dc

Sharing

Copy URL Twitter E-mail

General

Target

cf75f254efd6d9014ae12251022b4c829c3a65165e2a6afc03b4d7149101a0dc
Size

136KB
MD5

5e27a57b87ef486e34b89599896aae7b
SHA1

62c8f9dcd660f89b05687df93765230dd0fc5a2a
SHA256

cf75f254efd6d9014ae12251022b4c829c3a65165e2a6afc03b4d7149101a0dc
SHA512

84d4001f4de9d513855638ac6cf5c52b6d9632fe31ab91634f66e177088db29ef0d1ad4db067061e69b31eaa3820b896cd2a7f229cad0b40d713e4f06f8e6da1
SSDEEP

3072:QU4V44ivRcDKJBCHkaZLp9wMamAmPAeM9vl:Qf+WDeCEaNLTPAe

Score

N/A

Malware Config

Signatures

Files

cf75f254efd6d9014ae12251022b4c829c3a65165e2a6afc03b4d7149101a0dc
.dll windows x86

e12db715f08f771e30e56174efa58ba8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExA
RegSetValueExA
RegCloseKey
RegDeleteKeyA

ole32

CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
OleInitialize

kernel32

VirtualQuery
CreateEventA
LCMapStringW
FindFirstFileA
GetModuleFileNameA
HeapAlloc
InitializeCriticalSection
InterlockedDecrement
GetVersion
GetFileType
DeleteFileA
GetTempFileNameA
EnterCriticalSection
GetLocalTime
SetUnhandledExceptionFilter
IsBadWritePtr
GetCommandLineA
GetModuleHandleA
FlushFileBuffers
CreateFileA
HeapFree
GetOEMCP
TlsAlloc
IsBadReadPtr
FindClose
HeapReAlloc
CreateDirectoryA
GetProcAddress
GetLastError
RtlUnwind
OutputDebugStringA
GetStdHandle
LoadLibraryA
VirtualAlloc
GetCPInfo
TerminateProcess
SetHandleCount
GetStringTypeA
WaitForSingleObject
TlsFree
LoadResource
ExitProcess
GetStringTypeW
LeaveCriticalSection
SetLastError
FreeEnvironmentStringsA
GetTimeFormatA
DebugBreak
GetCurrentDirectoryA
LockResource
GetFileSize
FreeEnvironmentStringsW
LCMapStringA
MapViewOfFile
UnmapViewOfFile
TlsGetValue
CreateThread
IsBadCodePtr
WriteFile
GetDateFormatA
ReadFile
GetEnvironmentStrings
PulseEvent
GetEnvironmentStringsW
HeapCreate
GetTempPathA
GetLocaleInfoA
ResetEvent
CreateFileMappingA
TlsSetValue
GetACP
GetSystemInfo
GetVersionExA
GetModuleHandleW
InterlockedIncrement
GetCurrentThreadId
GetStartupInfoA
DeleteCriticalSection
WideCharToMultiByte
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LoadLibraryExA
Sleep
GetCurrentProcess
UnhandledExceptionFilter
MultiByteToWideChar
VirtualProtect

user32

wsprintfA
LoadStringA

Exports

Exports

F2gjsricnrty
L8ofcjergg3
Ng1vdwegeyx
Pornograp1hy

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e12db715f08f771e30e56174efa58ba8

Headers

File Characteristics

Imports

advapi32

ole32

kernel32

user32

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 45KB

.data Size: 72KB - Virtual size: 248KB

.rsrc Size: 4KB - Virtual size: 1008B

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 48KB - Virtual size: 45KB

.data
Size: 72KB - Virtual size: 248KB

.rsrc
Size: 4KB - Virtual size: 1008B

.reloc
Size: 8KB - Virtual size: 4KB