afcdcfb21c53b9e89d271819fa2c4ab3dd910e7745d1bfd50e735f5dfdb8ea6c

General

Target

afcdcfb21c53b9e89d271819fa2c4ab3dd910e7745d1bfd50e735f5dfdb8ea6c
Size

774KB
MD5

0ab6194970ff39c13559945a4dbb3c26
SHA1

dedb9b812cb59049bc13b7b9252346dea87a29ac
SHA256

afcdcfb21c53b9e89d271819fa2c4ab3dd910e7745d1bfd50e735f5dfdb8ea6c
SHA512

53480a8d34bda5ba7b4d59995432fe628787d1c8c90f9dbb0b7415a2b849bbc0d11ee3df6a130075eb70ee6a85c343598026126f751408c00563342c26dcb394
SSDEEP

24576:g+c8y+QSCcVlZKjV924y40fHiQgDm0EiZwDRvLi5iq:gB8ywVuVF0fHOVEiZAvO5

Score

N/A

Malware Config

Signatures

Files

afcdcfb21c53b9e89d271819fa2c4ab3dd910e7745d1bfd50e735f5dfdb8ea6c
.exe windows x86

c28aa5af713406eb4f76e10403e65000

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStdHandle
HeapDestroy
WriteConsoleW
GetStartupInfoA
WriteConsoleW
lstrlenW
GetFileAttributesW
GetPriorityClass
GetCurrentDirectoryA
lstrcpyA
HeapCreate
SetEvent
CloseHandle
CopyFileW
GetProcessHeap
WriteConsoleW
GetModuleHandleA
CreatePipe
GetCommandLineA
SuspendThread
DisconnectNamedPipe

msftedit

RichComboBoxWndProc
RichListBoxWndProc
SetCustomTextOutHandlerEx
RichEditWndProc

shell32

StrChrA
ShellAboutA
DragQueryFileA
SHGetMalloc
SHFree
DllUnregisterServer
SHGetDiskFreeSpaceA
DuplicateIcon
DragFinish
ExtractIconA
ShellMessageBoxA
DragAcceptFiles
SHGetSettings

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 765KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c28aa5af713406eb4f76e10403e65000

Headers

File Characteristics

Imports

kernel32

msftedit

shell32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 776B

.rsrc Size: 765KB - Virtual size: 2.1MB

.rdata Size: 512B - Virtual size: 132B

.impdata Size: 512B - Virtual size: 108B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 776B

.rsrc
Size: 765KB - Virtual size: 2.1MB

.rdata
Size: 512B - Virtual size: 132B

.impdata
Size: 512B - Virtual size: 108B