bf7cdda5dabe1d7646fc4f294e64de4650c135304c930bee417878d0ad1a1cef

General

Target

bf7cdda5dabe1d7646fc4f294e64de4650c135304c930bee417878d0ad1a1cef
Size

63KB
MD5

a90c3b86ed6caef004eeb4760be76ac6
SHA1

4d434a86ee52295d4cc3b39614634c0a9d8aa7b4
SHA256

bf7cdda5dabe1d7646fc4f294e64de4650c135304c930bee417878d0ad1a1cef
SHA512

185cdd7baf3402471b3c6067dc531a28aff523a70f19584fed0636852d29fdbedbf6cdad2be5d6cd504fc02565f4a30a4b6966efe805101cb6fd6042da3c5d20
SSDEEP

1536:fzqISh/pJLd7I8w1Tfsgdewzc3jB0XVfSNlhkpBZZhdZWXx:f1TsKMkFSNE7hdA

Score

N/A

Malware Config

Signatures

Files

bf7cdda5dabe1d7646fc4f294e64de4650c135304c930bee417878d0ad1a1cef
.exe windows x86

b3f3897d50b9ad2c793bb699a157194a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
strlen
strcpy
strcat
_stricmp
memmove
_CIatan2
_CIatan
_CIcosh
_CIsqrt
_CIlog
malloc
memcpy
free
fseek
ftell
fread
fclose
strcmp
sprintf
strncpy
strstr
localtime
mktime

kernel32

GetModuleHandleA
HeapCreate
GetExitCodeThread
HeapDestroy
ExitProcess
FreeLibrary
CloseHandle
InitializeCriticalSection
WaitForSingleObject
PeekNamedPipe
CreateFileA
SetFilePointer
SetEndOfFile
HeapAlloc
WriteFile
HeapFree
WideCharToMultiByte
Sleep
GetLocalTime
ReadFile
HeapReAlloc
GlobalAlloc
GlobalLock
GlobalUnlock

user32

LoadIconA
BeginPaint
DestroyIcon
GetCursorPos
FillRect
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard

gdi32

BitBlt

comctl32

InitCommonControlsEx

wsock32

WSAGetLastError
closesocket
WSACleanup
WSAStartup
recv
send
htons
sendto

winmm

timeBeginPeriod
timeEndPeriod

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 110B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b3f3897d50b9ad2c793bb699a157194a

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

comctl32

wsock32

winmm

Sections

.code Size: 10KB - Virtual size: 10KB

.text Size: 22KB - Virtual size: 21KB

.rdata Size: 512B - Virtual size: 110B

.data Size: 2KB - Virtual size: 6KB

.rsrc Size: 11KB - Virtual size: 10KB

.code
Size: 10KB - Virtual size: 10KB

.text
Size: 22KB - Virtual size: 21KB

.rdata
Size: 512B - Virtual size: 110B

.data
Size: 2KB - Virtual size: 6KB

.rsrc
Size: 11KB - Virtual size: 10KB