bdf1c0322240502a828bb54531372ddd872961b23d3a88b43f7332a47b643360

Sharing

Copy URL

Twitter E-mail

General

Target

bdf1c0322240502a828bb54531372ddd872961b23d3a88b43f7332a47b643360
Size

84KB
MD5

f8f51015c2021d281de4727c5224ea67
SHA1

63f427ced474d165eb55bcd9bbc54fd45bb79f0f
SHA256

bdf1c0322240502a828bb54531372ddd872961b23d3a88b43f7332a47b643360
SHA512

c7e456729f0d99542c9c08fb44d66b5024576af8c628690cf2ec1f5634ebae18da32c35552f1276af4d6f5ea9181b097cc7b500aeab866f0e5fb07700c769248
SSDEEP

1536:yZRhvqPRS9t8g0T/hitN/u/EFqm2pr0jeddFQcNZBT9HjRrbiVRl:4RhSP4l0FitN/OEPve7jRrbml

Score

N/A

Malware Config

Signatures

Files

bdf1c0322240502a828bb54531372ddd872961b23d3a88b43f7332a47b643360
.exe windows x86

f3fb1a41c722836d5d6740b829d7939f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Heap32ListFirst
Heap32Next
GetSystemTimeAdjustment
GetTempFileNameA
GetUserDefaultLangID
GetProcessWorkingSetSize
GlobalUnWire
GetStringTypeExW
GlobalFindAtomA
HeapLock
GetSystemPowerStatus
GlobalFix
GetStartupInfoA
GetPrivateProfileIntA
GetWindowsDirectoryW
GetMailslotInfo
GetTapePosition
GetVolumeInformationA
GetSystemTime
GetNumberFormatA
GetProcessAffinityMask
GetProcessShutdownParameters
HeapCreate
GetModuleHandleA
Heap32ListFirst
Heap32Next
GetSystemTimeAdjustment
GetTempFileNameA
GetUserDefaultLangID
GetProcessWorkingSetSize
GlobalUnWire
GetStringTypeExW
GlobalFindAtomA
HeapLock
GetSystemPowerStatus
GlobalFix
GetStartupInfoA
GetPrivateProfileIntA
GetWindowsDirectoryW
GetMailslotInfo
GetTapePosition
GetVolumeInformationA
GetSystemTime
GetNumberFormatA
GetProcessAffinityMask
GetProcessShutdownParameters
HeapCreate
GetModuleHandleA

msi

ord19
ord62
ord55
ord164
ord21
ord72
ord29
ord15
ord53

mpr

WNetConnectionDialog1W
WNetOpenEnumW
WNetCancelConnection2W
WNetDisconnectDialog
WNetAddConnection2W
WNetCancelConnectionA
WNetGetLastErrorA
WNetAddConnection3W

user32

LoadIconA
RegisterClassExA
CreateWindowExA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA

nddeapi

ord606
ord600
ord605
ord603
ord502
ord509

netapi32

NetServerSetInfo
NetConnectionEnum
NetSessionDel
NetServerGetInfo

msimg32

TransparentBlt

msvcrt

_acmdln
exit
_XcptFilter
_exit
__getmainargs
_initterm
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__dllonexit
_onexit
__setusermatherr

lz32

LZSeek

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f3fb1a41c722836d5d6740b829d7939f

Headers

File Characteristics

Imports

kernel32

msi

mpr

user32

nddeapi

netapi32

msimg32

msvcrt

lz32

Sections

.text Size: 20KB - Virtual size: 17KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 1.5MB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 20KB - Virtual size: 17KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 1.5MB

.rsrc
Size: 4KB - Virtual size: 2KB