047cb4e8b860c4ed305e807c7c2b0a38028ac54afb99d651a052a34987303a8f

General

Target

047cb4e8b860c4ed305e807c7c2b0a38028ac54afb99d651a052a34987303a8f
Size

35KB
MD5

cbf05a82bef8f94011d97b40766a56cc
SHA1

2ed561420ef7481a679b782efef9e244364de98f
SHA256

047cb4e8b860c4ed305e807c7c2b0a38028ac54afb99d651a052a34987303a8f
SHA512

6f98dda32ffa81f856e03dc50123b4bbd45460be01df4a93441e766dea0539f5870fa23b20fbf6d8271273dbdb5146d0d032a30afc7eb6ffa80da2a2ef7832c2
SSDEEP

192:gqNy86cH5EY2FI4itwlwcw+7cqS7bww6I3iSV5478pDWtu0Sg02ggggggggggggy:hIetkVDc9HwwViSAopxLycdLFyG503

Score

N/A

Malware Config

Signatures

Files

047cb4e8b860c4ed305e807c7c2b0a38028ac54afb99d651a052a34987303a8f
.exe windows x86

6e10955dc6e911423de36e8d2e7c8cbf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetDiskFreeSpaceA
GetACP
GetCurrentThread
GetDriveTypeA
GetEnvironmentStringsA
GetPrivateProfileSectionA
IsValidCodePage
GetProcAddress
SearchPathA
CreateFileA
GetDateFormatW
LZClose
ExitThread

shell32

SHGetSpecialFolderPathA

lz32

LZRead
LZInit

esent

JetGetCounter

duser

AddGadgetMessageHandler
AttachWndProcA
AttachWndProcW
AutoTrace
SetGadgetRotation
BuildAnimation
BuildDropTarget
BuildInterpolation
CreateAction
CreateGadget
SetGadgetScale
DUserBuildGadget
DUserCastClass
DUserCastDirect
DUserCastHandle
DUserDeleteGadget
DUserFindClass
DUserGetAlphaPRID
DUserGetGutsData
DUserGetRectPRID
DUserGetRotatePRID
DUserGetScalePRID
DUserInstanceOf
DUserPostEvent
DUserPostMethod
DUserRegisterGuts
DUserRegisterStub
DUserRegisterSuper
DUserSendEvent
DUserSendMethod
DUserStopAnimation

Sections

Size: 2KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

a
Size: 6KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

b
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

d
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6e10955dc6e911423de36e8d2e7c8cbf

Headers

File Characteristics

Imports

kernel32

shell32

lz32

esent

duser

Sections

Size: 2KB - Virtual size: 20KB

a Size: 6KB - Virtual size: 82KB

b Size: 21KB - Virtual size: 24KB

.reloc Size: 2KB - Virtual size: 2KB

d Size: 2KB - Virtual size: 2KB

a
Size: 6KB - Virtual size: 82KB

b
Size: 21KB - Virtual size: 24KB

.reloc
Size: 2KB - Virtual size: 2KB

d
Size: 2KB - Virtual size: 2KB