c665defc34edc2a988c2808556c2271ac463f8159526ba7813bb9a28458c6993

General

Target

c665defc34edc2a988c2808556c2271ac463f8159526ba7813bb9a28458c6993
Size

294KB
MD5

a35c8b4bca3cb829050da7a3d5cc3e38
SHA1

f25c01a01a487c67b88328d64c892d0d20cfcdd0
SHA256

c665defc34edc2a988c2808556c2271ac463f8159526ba7813bb9a28458c6993
SHA512

c4ac447253366ca9c6b92467e880d527d0c255525d1320b5ccb5be824bdb7201beaa41d9ccadad88e168a0d93468b5a9c52115635d271a022814546003e6a58e
SSDEEP

6144:pA3SE+Zbf+qaQFCMCainTMyeEaPS6k0VWt4VBG2Kq:pC8ZbfhkTrhabFVax2K

Score

N/A

Malware Config

Signatures

Files

c665defc34edc2a988c2808556c2271ac463f8159526ba7813bb9a28458c6993
.exe windows x86

ea2908084defb3e83fcd84e8fe4c23aa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStdHandle
GetCurrentDirectoryA
SuspendThread
GetStartupInfoA
HeapDestroy
WriteConsoleW
GetPriorityClass
GetFileAttributesW
DisconnectNamedPipe
WriteConsoleW
SetEvent
GetCommandLineA
CloseHandle
lstrlenW
WriteConsoleW
CreatePipe
lstrcpyA
HeapCreate
GetModuleHandleA
GetProcessHeap
CopyFileW

msftedit

SetCustomTextOutHandlerEx
RichEditWndProc
RichComboBoxWndProc
RichListBoxWndProc

shell32

ShellMessageBoxA
DragFinish
SHGetDiskFreeSpaceA
DragQueryFileA
ExtractIconA
ShellAboutA
SHGetMalloc
DuplicateIcon
SHFree
DragAcceptFiles
StrChrA
DllUnregisterServer
SHGetSettings

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 285KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ea2908084defb3e83fcd84e8fe4c23aa

Headers

File Characteristics

Imports

kernel32

msftedit

shell32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 776B

.rsrc Size: 285KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 132B

.impdata Size: 512B - Virtual size: 108B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 776B

.rsrc
Size: 285KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 132B

.impdata
Size: 512B - Virtual size: 108B