acfcbb3b60e86d47fc14a5a1bae099ae803d6929c7723a714821840366298968

Sharing

Copy URL Twitter E-mail

General

Target

acfcbb3b60e86d47fc14a5a1bae099ae803d6929c7723a714821840366298968
Size

851KB
MD5

e44a9036df23538993c4f6bef93e5814
SHA1

9dd4cd85d29ed248cbd169c789a7242b17a90733
SHA256

acfcbb3b60e86d47fc14a5a1bae099ae803d6929c7723a714821840366298968
SHA512

e92b4840421ad11099d0fc9e6e4d6e9c7b9388b01c7fff978c72bd4d0f9066fc875e007bc1fe91da58992fafb93f5c25d91dd00b32d2afb80c1124aff9367014
SSDEEP

12288:F7iltMXJUWNURMyCYpyRmUUbNHdwT/yd8KF51Krj+ED+f/1LV9W0Rsoa9zqiV+Fy:ROM5UIEHpOUjZd7F2r6EDildRsoa9G

Score

N/A

Malware Config

Signatures

Files

acfcbb3b60e86d47fc14a5a1bae099ae803d6929c7723a714821840366298968
.exe windows x86

ee61d1b0b0dd0548421bc5e10d209ed2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAdjustment
lstrcmpW
LocalCompact
DebugActiveProcess
EnumTimeFormatsW
SetPriorityClass
SetConsoleMenuClose
FreeUserPhysicalPages
GetLocalTime
VirtualAlloc
CreateNamedPipeA
FindNextVolumeMountPointA
RegisterConsoleOS2
GenerateConsoleCtrlEvent
GetHandleInformation
HeapCreate
GetEnvironmentStringsW
GetConsoleAliasesLengthA
GlobalHandle
LoadLibraryA

shlwapi

SHRegCreateUSKeyA
PathCompactPathW
UrlUnescapeA
SHGetThreadRef
SHIsLowMemoryMachine
PathRemoveExtensionA
AssocQueryStringA
SHGetValueA
PathFindFileNameA
SHEnumKeyExA
StrCmpLogicalW
ColorHLSToRGB
PathGetCharTypeA
StrCatBuffW
UrlApplySchemeW

gdi32

SetColorSpace
GdiSetServerAttr
GdiResetDCEMF
SelectFontLocal
GdiRealizationInfo
EngCreateBitmap
GetEnhMetaFilePaletteEntries
PATHOBJ_vGetBounds
DdEntry50
EnumICMProfilesW
EnumFontFamiliesW
OffsetRgn
AbortDoc
GdiSetBatchLimit
GetCharABCWidthsI
GdiEndDocEMF
DdEntry8

msvcrt

_tempnam
_dup2
??0bad_typeid@@QAE@ABV0@@Z
__CxxExceptionFilter
_mbsspn
_strnicoll
fclose
__getmainargs
_wcsrev
_adj_fdivr_m16i
_getsystime
__p__dstbias
iswcntrl
printf
_mbscpy
_fstati64
_wremove
_adj_fdiv_m32i
_CIcosh
_ismbclower
_wchmod

Sections

.text
Size: 719KB - Virtual size: 719KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee61d1b0b0dd0548421bc5e10d209ed2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shlwapi

gdi32

msvcrt

Sections

.text Size: 719KB - Virtual size: 719KB

.rdata Size: 124KB - Virtual size: 123KB

.data Size: 3KB - Virtual size: 1.5MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 719KB - Virtual size: 719KB

.rdata
Size: 124KB - Virtual size: 123KB

.data
Size: 3KB - Virtual size: 1.5MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB