2cb1fea720ee8e14476c975d5ac78e63057ca40704dfa57f9afe8f2ddd7d8a8f

Sharing

Copy URL Twitter E-mail

General

Target

2cb1fea720ee8e14476c975d5ac78e63057ca40704dfa57f9afe8f2ddd7d8a8f
Size

128KB
MD5

8198973a06d986b06ee6840a0ea1faf6
SHA1

8cd4a2b9912b415fac2b7616f4d71de50551899a
SHA256

2cb1fea720ee8e14476c975d5ac78e63057ca40704dfa57f9afe8f2ddd7d8a8f
SHA512

4d116432bfdd18a3cc82aac0a2610ea5c5cf5adb8152d85cd03364648cbff92ae6607e400760ddc8f940da8283b583f1188875f0dd6fce3b3b700d3bef05ecf1
SSDEEP

3072:Le0hcYYulEbk+baTqb0tgdEf/jUK08as/Eq0t:1hcf+EbkhAQgdEfot8asV0t

Score

N/A

Malware Config

Signatures

Files

2cb1fea720ee8e14476c975d5ac78e63057ca40704dfa57f9afe8f2ddd7d8a8f
.exe windows x86

26fd4a13d92b042d6c8f2347c2f3dd20

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

wcsrchr
_wcslwr
_wcsnicmp
_wcsicmp

shell32

ord196
SHGetPathFromIDListW

shlwapi

StrChrW

kernel32

PostQueuedCompletionStatus
GetFileAttributesExW
CloseHandle
DeleteAtom
WaitForSingleObject
GetBinaryTypeW
GetModuleHandleExW
GetExitCodeProcess

user32

GetNextDlgGroupItem
GetKeyboardLayout
SwitchDesktop
LoadImageA
GetDlgItemInt
KillTimer
CheckDlgButton
GetScrollPos
EnumThreadWindows
SetScrollPos
CallMsgFilterA
GrayStringW

gdi32

GetMiterLimit
GetEnhMetaFileBits
DeleteDC
GetArcDirection
GetCharWidthA
DeleteColorSpace
SetPolyFillMode
CreateRectRgn
PlgBlt
GetPixel
GetObjectA
EnumFontFamiliesExA
PtInRegion

ole32

CoFileTimeNow
IsAccelerator
CoInitialize
CoUninitialize

Exports

Exports

?BDVvHGDjsgdshdhbJHgdjf@@YGKK@Z
?JHDsHGDsgdshgdjsbHJGdjgs@@YGKKK@Z
?NBXDmnbfdGDjsgfysdgfd@@YGKKKK@Z

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 504B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.newdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.info
Size: 512B - Virtual size: 182B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26fd4a13d92b042d6c8f2347c2f3dd20

Headers

DLL Characteristics

File Characteristics

Imports

ntdll

shell32

shlwapi

kernel32

user32

gdi32

ole32

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 504B

.newdata Size: 2KB - Virtual size: 1KB

.info Size: 512B - Virtual size: 182B

.rsrc Size: 121KB - Virtual size: 121KB

.reloc Size: 1024B - Virtual size: 520B

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 504B

.newdata
Size: 2KB - Virtual size: 1KB

.info
Size: 512B - Virtual size: 182B

.rsrc
Size: 121KB - Virtual size: 121KB

.reloc
Size: 1024B - Virtual size: 520B