cb2b8ca1ec3f86c274eb30502870eafc5cb7a432213db0e25a5ee858cac3af21

General

Target

cb2b8ca1ec3f86c274eb30502870eafc5cb7a432213db0e25a5ee858cac3af21
Size

248KB
MD5

06aa25bffce99f6f5a5d140e37407658
SHA1

110175316141ecdb5e5c4f2a55a80619c9202c0d
SHA256

cb2b8ca1ec3f86c274eb30502870eafc5cb7a432213db0e25a5ee858cac3af21
SHA512

b9be19d0538c94f5fea8488cd04a24f05c581379212dd7901d1f91a983e1925660b5297876313d93f7f814eff351d8fb30c947e9735dfc751931f6ff083744b7
SSDEEP

3072:nIreggm+2AArgP3DwaIbgr7JUet6kS+KVTUWYoy+CQYEKIyifa8:nIrfd6z+bUUQ6v+doy+CQYd7

Score

N/A

Malware Config

Signatures

Files

cb2b8ca1ec3f86c274eb30502870eafc5cb7a432213db0e25a5ee858cac3af21
.dll windows x86

193a6c6028d8ca2f45fd78b08630c919

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetVersionExA
IsBadReadPtr
GetCommandLineA
LoadLibraryExA
GetProcAddress
GetLastError
ExitThread
GetOEMCP
GetACP
GetModuleHandleA
LoadLibraryA
lstrlenA
VirtualAlloc

user32

BeginPaint
CharLowerA
CreateIcon
CallWindowProcA
CharNextW
DefFrameProcA
CreateMenu
ClientToScreen
DestroyIcon
DrawIcon
DispatchMessageW
DefWindowProcA
CharToOemA
AdjustWindowRectEx
CreatePopupMenu
CharLowerBuffA
CharUpperBuffA
CheckMenuItem
DeleteMenu
DispatchMessageA
DrawFrameControl
DestroyMenu
CloseClipboard
CharNextA
DefMDIChildProcA
CallNextHookEx
DestroyWindow
DrawEdge
DestroyCursor
ChildWindowFromPoint

msvcrt

log
wcsncmp
rand
wcscspn
memmove
tan

Sections

.text
Size: 208KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 4KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

193a6c6028d8ca2f45fd78b08630c919

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 208KB - Virtual size: 204KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 4KB

BSS Size: 4KB - Virtual size: 108KB

.bdata Size: 8KB - Virtual size: 6KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 208KB - Virtual size: 204KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 4KB

BSS
Size: 4KB - Virtual size: 108KB

.bdata
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 1KB