cad824aa26db01f5e92dab863b04489c87bdd0c5223c09c4cc46ecf1d0846225

Sharing

Copy URL Twitter E-mail

General

Target

cad824aa26db01f5e92dab863b04489c87bdd0c5223c09c4cc46ecf1d0846225
Size

210KB
MD5

a2ccfbb7e9ed9df27da65f5b881d86d0
SHA1

966cf4492031d04f4c4df3d2d6ccff7e776d4d34
SHA256

cad824aa26db01f5e92dab863b04489c87bdd0c5223c09c4cc46ecf1d0846225
SHA512

240ea222d36a40e1cb479d012dbbef0992d93a133b7862ca33d23bef274435f819abb1a2c286f113208cfa560fd9655aaccce4bda209ae14d4cc7c523c13fae4
SSDEEP

3072:sZGcuPVmpUNrjnosm3zhtCyNk1WlvSm/YJ1vjo/9b9xW0IVqPaK:/PKOosm3NtHQWlvf/K1vE/9bmL

Score

N/A

Malware Config

Signatures

Files

cad824aa26db01f5e92dab863b04489c87bdd0c5223c09c4cc46ecf1d0846225
.exe windows x86

46fa21e0f2fb55c54ee90e19e76afba1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetVersionExA
VirtualAllocEx
ExitProcess
IsBadHugeReadPtr
GetCommandLineW
ExitThread
GetCommandLineA
LoadLibraryExA
lstrlenA
GetProcAddress
GetModuleHandleA
LoadLibraryA

ole32

GetHGlobalFromStream
CreateBindCtx
CoRegisterClassObject
CoCreateInstanceEx
WriteClassStm
CoGetObjectContext
PropVariantClear

user32

CharToOemA
MapWindowPoints

shlwapi

PathFileExistsA

Sections

.text
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rsrc5
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rsrc0
Size: 1024B - Virtual size: 884B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rsrc6
Size: 512B - Virtual size: 95B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rsrc2
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rsrc8
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rsrc7
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rsrc9
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46fa21e0f2fb55c54ee90e19e76afba1

Headers

File Characteristics

Imports

kernel32

ole32

user32

shlwapi

Sections

.text Size: 60KB - Virtual size: 60KB

DATA Size: 136KB - Virtual size: 135KB

rsrc5 Size: 1KB - Virtual size: 1KB

rsrc0 Size: 1024B - Virtual size: 884B

rsrc6 Size: 512B - Virtual size: 95B

rsrc2 Size: 2KB - Virtual size: 1KB

rsrc8 Size: 2KB - Virtual size: 1KB

rsrc7 Size: 1KB - Virtual size: 1KB

rsrc9 Size: 2KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 936B

.text
Size: 60KB - Virtual size: 60KB

DATA
Size: 136KB - Virtual size: 135KB

rsrc5
Size: 1KB - Virtual size: 1KB

rsrc0
Size: 1024B - Virtual size: 884B

rsrc6
Size: 512B - Virtual size: 95B

rsrc2
Size: 2KB - Virtual size: 1KB

rsrc8
Size: 2KB - Virtual size: 1KB

rsrc7
Size: 1KB - Virtual size: 1KB

rsrc9
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 936B