0a6809285844a8eb8231bed82723df255c0fd832907be9d35eb3fd4318761771

Sharing

Copy URL

Twitter E-mail

General

Target

0a6809285844a8eb8231bed82723df255c0fd832907be9d35eb3fd4318761771
Size

5.4MB
MD5

a7d6a7be5a63aea4a96abc303b0815d0
SHA1

0352641f209d6321295253508356a20bd95ec3cb
SHA256

0a6809285844a8eb8231bed82723df255c0fd832907be9d35eb3fd4318761771
SHA512

fbcda652d1bd9ad140da16ce91ac95ce974f642b4c1cddc58ad9b3a699468c6cacf212e0f6244282bd048ebc853060cade06be6efdf0cf7ba6ce453065078da9
SSDEEP

98304:6Za9oZa9JhZdPWP8PeTJmVYJpZFBjZVYJpZFBjer7:jXlK4eTJzK8r7

Score

N/A

Malware Config

Signatures

Files

0a6809285844a8eb8231bed82723df255c0fd832907be9d35eb3fd4318761771
.zip
Bifrost.exe
.exe windows x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 448KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lf2m5krq
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

8tbkc8eh
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6tqlca16
Size: - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

arwsmj2d
Size: 613KB - Virtual size: 616KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ifpanedu
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
BifrostFirst.exe
.exe windows x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 448KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lf2m5krq
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

8tbkc8eh
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6tqlca16
Size: - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

arwsmj2d
Size: 613KB - Virtual size: 616KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ifpanedu
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
Cain.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

wDEg
Size: - Virtual size: 4.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wDEg
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
CainFirst.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

wDEg
Size: - Virtual size: 4.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wDEg
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
README.TXT

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 448KB

lf2m5krq Size: - Virtual size: 96KB

.data Size: - Virtual size: 108KB

.rsrc Size: 32KB - Virtual size: 364KB

8tbkc8eh Size: - Virtual size: 4KB

6tqlca16 Size: - Virtual size: 224KB

arwsmj2d Size: 613KB - Virtual size: 616KB

ifpanedu Size: 4KB - Virtual size: 4KB

f433e7fcc51e68080022754836705744

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 448KB

lf2m5krq Size: - Virtual size: 96KB

.data Size: - Virtual size: 108KB

.rsrc Size: 32KB - Virtual size: 364KB

8tbkc8eh Size: - Virtual size: 4KB

6tqlca16 Size: - Virtual size: 224KB

arwsmj2d Size: 613KB - Virtual size: 616KB

ifpanedu Size: 4KB - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

wDEg Size: - Virtual size: 4.1MB

wDEg Size: 1.2MB - Virtual size: 1.2MB

.rsrc Size: 14KB - Virtual size: 16KB

Headers

DLL Characteristics

File Characteristics

Sections

wDEg Size: - Virtual size: 4.1MB

wDEg Size: 1.2MB - Virtual size: 1.2MB

.rsrc Size: 14KB - Virtual size: 16KB

.text
Size: - Virtual size: 448KB

lf2m5krq
Size: - Virtual size: 96KB

.data
Size: - Virtual size: 108KB

.rsrc
Size: 32KB - Virtual size: 364KB

8tbkc8eh
Size: - Virtual size: 4KB

6tqlca16
Size: - Virtual size: 224KB

arwsmj2d
Size: 613KB - Virtual size: 616KB

ifpanedu
Size: 4KB - Virtual size: 4KB

.text
Size: - Virtual size: 448KB

lf2m5krq
Size: - Virtual size: 96KB

.data
Size: - Virtual size: 108KB

.rsrc
Size: 32KB - Virtual size: 364KB

8tbkc8eh
Size: - Virtual size: 4KB

6tqlca16
Size: - Virtual size: 224KB

arwsmj2d
Size: 613KB - Virtual size: 616KB

ifpanedu
Size: 4KB - Virtual size: 4KB

wDEg
Size: - Virtual size: 4.1MB

wDEg
Size: 1.2MB - Virtual size: 1.2MB

.rsrc
Size: 14KB - Virtual size: 16KB

wDEg
Size: - Virtual size: 4.1MB

wDEg
Size: 1.2MB - Virtual size: 1.2MB

.rsrc
Size: 14KB - Virtual size: 16KB