cab782b384bc202d21abffe45e894252ad28ff063320e2ffa2ebc28057c910d7

Sharing

Copy URL

Twitter E-mail

General

Target

cab782b384bc202d21abffe45e894252ad28ff063320e2ffa2ebc28057c910d7
Size

216KB
MD5

1e0c2269fe5b2d98cacbe543e458f483
SHA1

e7322efa59333d4c2cfcb3f8792bb7a06aab0c20
SHA256

cab782b384bc202d21abffe45e894252ad28ff063320e2ffa2ebc28057c910d7
SHA512

3aeb1b7b07369928a71cdd15fde4071bc4da6fc97caa730ff82d1799bf918b1b511caab1ed0cdf0490b851ede06c957bfdadb170754743e93b811c0ccbb587b3
SSDEEP

3072:qG2crAhPbhfktQRwN9+J+K+lnAMLeTfEG1w/eN0xGTYGkbJibtOkm3lbay:PwDVkSCN9+J+KD9fEG1w/em1kmFay

Score

N/A

Malware Config

Signatures

Files

cab782b384bc202d21abffe45e894252ad28ff063320e2ffa2ebc28057c910d7
.exe windows x86

fdeb02a28baa12a962ffabcbf612bb9b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
InterlockedExchange
GetLastError
WideCharToMultiByte
GetProcAddress
LoadLibraryA
GetModuleFileNameA
GetModuleHandleA
GetVersion
lstrlenA
FindResourceA
CreateFileA
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetFilePointer
GetVersionExA
GetACP
GetLocaleInfoA
GetThreadLocale
CloseHandle
SetEvent
OpenEventA
OutputDebugStringA
OutputDebugStringW
RaiseException
GetCurrentProcessId
GetModuleFileNameW
InterlockedIncrement
VirtualAlloc
UnmapViewOfFile
GetSystemInfo
MapViewOfFile
CreateFileMappingA
GetCurrentThread
OpenFileMappingA
InterlockedDecrement
HeapValidate
IsBadReadPtr
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoA
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapReAlloc
HeapDestroy
HeapCreate
VirtualFree
ExitProcess
GetOEMCP
GetCPInfo
TlsGetValue
TlsAlloc
TlsSetValue
GetCurrentThreadId
TlsFree
SetLastError
DebugBreak
GetStdHandle
WriteFile
WriteConsoleW
GetFileType
LoadLibraryW
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
RtlUnwind
InitializeCriticalSection
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

user32

LoadStringA

advapi32

RevertToSelf
OpenThreadToken
SetThreadToken

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fdeb02a28baa12a962ffabcbf612bb9b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 136KB - Virtual size: 135KB

.rdata Size: 44KB - Virtual size: 42KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 24KB - Virtual size: 21KB

.text
Size: 136KB - Virtual size: 135KB

.rdata
Size: 44KB - Virtual size: 42KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 24KB - Virtual size: 21KB