cebf242b646a83314d1c4fb19f9bcbafacfabadcdb9a87a9a503c348f1be47aa

Sharing

Copy URL Twitter E-mail

General

Target

cebf242b646a83314d1c4fb19f9bcbafacfabadcdb9a87a9a503c348f1be47aa
Size

100KB
MD5

a06c85e91de97c49fd567376fe9bae90
SHA1

1d935dc1f0efc8ffcfbbf89a5db7ab8cf367a06e
SHA256

cebf242b646a83314d1c4fb19f9bcbafacfabadcdb9a87a9a503c348f1be47aa
SHA512

8ec28f0ef48b4b1cd06cd219bcfd667a14631d783a16d855ea64f89729de56dafa1a087ce5078e4bcda025ae50c63a93ca32d8be3a1babe54a1b2d2116d0fac2
SSDEEP

1536:BAIjo3r0O2nrJJoIXhOHLl7+J4Q6d7H69T:BAIE0ZrJJoIELlw4H69T

Score

N/A

Malware Config

Signatures

Files

cebf242b646a83314d1c4fb19f9bcbafacfabadcdb9a87a9a503c348f1be47aa
.exe windows x86

a0a5cc6ddf2be925c69896dc904fb42e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
WaitForSingleObject
GetVersionExA
FindClose
FindFirstFileA
LoadLibraryA
GetSystemDefaultLangID
lstrlenA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetSystemDirectoryA
GetProcAddress
GetACP
SetHandleCount
GetEnvironmentStrings
CloseHandle
ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
GetCPInfo
FreeLibrary
GetOEMCP
HeapFree
HeapAlloc
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
SetFilePointer
GetEnvironmentStringsW
MultiByteToWideChar
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
GetLastError
VirtualAlloc
GetStringTypeW
LCMapStringA
LCMapStringW
GetStringTypeA
FlushFileBuffers
HeapReAlloc
SetStdHandle

user32

LoadStringA
MessageBoxA

advapi32

RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kuamyzn
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

epogouz
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a0a5cc6ddf2be925c69896dc904fb42e

Headers

File Characteristics

Imports

kernel32

user32

advapi32

version

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 32KB - Virtual size: 32KB

kuamyzn Size: 32KB - Virtual size: 32KB

epogouz Size: 32KB - Virtual size: 32KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 32KB - Virtual size: 32KB

kuamyzn
Size: 32KB - Virtual size: 32KB

epogouz
Size: 32KB - Virtual size: 32KB