cf82b0ccf68893ee4b8d6a0aa223a4f1fc0ab8e1faccebd9e154fa3afbbe520f

Sharing

Copy URL

Twitter E-mail

General

Target

cf82b0ccf68893ee4b8d6a0aa223a4f1fc0ab8e1faccebd9e154fa3afbbe520f
Size

80KB
MD5

b4df4ccd5c976f8fe77c90d49b62c58c
SHA1

51b76e5f8a17af37a775494963b72285463483ae
SHA256

cf82b0ccf68893ee4b8d6a0aa223a4f1fc0ab8e1faccebd9e154fa3afbbe520f
SHA512

0e04179206073f5debe7cff90f751861d303d495f873867e375ba2a1d5deab86a53144b0e38811a7348c2000956d6232152a5945f0b79cc970cd4aed3dbc3cd5
SSDEEP

1536:Wn78M/J6C4q5Mv0l+wzBoW+a54xqVa3dWQ4WEyrkz:tMRd47v0bBP+a+xqVa3djr

Score

N/A

Malware Config

Signatures

Files

cf82b0ccf68893ee4b8d6a0aa223a4f1fc0ab8e1faccebd9e154fa3afbbe520f
.exe windows x86

bca2a4abd16f11c99866a4c22c229479

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateProcessW
DeleteFileW
GetLastError
CopyFileW
GetTimeFormatA
InterlockedExchange
GetVolumeInformationA
SetLastError
GetModuleFileNameW
GetDiskFreeSpaceW
FindNextChangeNotification
FindCloseChangeNotification
FindFirstChangeNotificationW
LoadLibraryW
ExitProcess
GetCurrentProcessId
GetFileTime
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
CreateProcessA
DeleteFileA
Sleep
GetCurrentThreadId
GetTickCount
FreeLibrary
LoadLibraryA
GetProcAddress
GetLocalTime

user32

GetActiveWindow
GetSysColorBrush
GetClassInfoExA
RegisterClassExA
GetWindowTextLengthA
GetWindowTextA
GetKeyNameTextA
KillTimer
SetTimer
GetScrollRange
ShowScrollBar
GetDlgItemInt
SetDlgItemInt
FrameRect
RegisterHotKey
CheckMenuItem
CheckMenuRadioItem
EndDeferWindowPos
AppendMenuA
CallWindowProcA
GetMessageA
GetWindowLongA
CheckRadioButton
SendDlgItemMessageA
OffsetRect
DestroyWindow
LoadImageA
DrawIcon
SetForegroundWindow
GetClipboardData
IsClipboardFormatAvailable
IsWindowEnabled
GetClassNameA
BeginDeferWindowPos
DeferWindowPos
EndDialog

ole32

CoUninitialize
CoInitialize
CoCreateInstance
CoRevokeClassObject
CoSuspendClassObjects
OleCreate
StgCreateDocfile
OleSetContainedObject

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
_XcptFilter
_exit
strchr
malloc
calloc
free
realloc
fopen
fseek
fputs
fwrite
fclose
exit
wcslen

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bca2a4abd16f11c99866a4c22c229479

Headers

File Characteristics

Imports

kernel32

user32

ole32

msvcrt

Sections

.text Size: 18KB - Virtual size: 17KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 7KB - Virtual size: 183KB

.rsrc Size: 1024B - Virtual size: 920B

.reloc Size: 1KB - Virtual size: 1KB

.rmnet Size: 41KB - Virtual size: 44KB

.text
Size: 18KB - Virtual size: 17KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 7KB - Virtual size: 183KB

.rsrc
Size: 1024B - Virtual size: 920B

.reloc
Size: 1KB - Virtual size: 1KB

.rmnet
Size: 41KB - Virtual size: 44KB