91b857d450fe82f4a9d99cf0567be9ceb34dfa3c36560567dcd8b2f244419c90

General

Target

91b857d450fe82f4a9d99cf0567be9ceb34dfa3c36560567dcd8b2f244419c90
Size

2.5MB
MD5

aed401528315e59957c99ec1a6532eef
SHA1

6718f53b613bfffd66971fee167cd5500fb5b31f
SHA256

91b857d450fe82f4a9d99cf0567be9ceb34dfa3c36560567dcd8b2f244419c90
SHA512

3d05bb18f6eb5080ca8a4d5eb77e5fd11166f58fc8747c20588131102f83842f463a71ddfd0cbddce5f4776eebbaf00581f176169e964ef8ef145e024ed9399a
SSDEEP

49152:x+1BF9BeAy84H89hGUicyN4LxhTaILW8X+vusSZcDqsyi2nTunnb:x+1xBxyBc9ti+NMIqiOs2DByiCob

Score

N/A

Malware Config

Signatures

Files

91b857d450fe82f4a9d99cf0567be9ceb34dfa3c36560567dcd8b2f244419c90
.cab
temp.exe
.exe windows x86

22deaa3e5166e3019a02358581c9a9ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lopen
ExitProcess

user32

MessageBoxA

shell32

ShellExecuteA

Sections

Size: 63KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 19KB - Virtual size: 588KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xxx
Size: 129KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xpcspyp2.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

22deaa3e5166e3019a02358581c9a9ee

Headers

File Characteristics

Imports

kernel32

user32

shell32

Sections

Size: 63KB - Virtual size: 116KB

Size: 2KB - Virtual size: 8KB

Size: 19KB - Virtual size: 588KB

.xxx Size: 129KB - Virtual size: 132KB

Headers

File Characteristics

Sections

CODE Size: 46KB - Virtual size: 45KB

DATA Size: 6KB - Virtual size: 5KB

BSS Size: - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 1KB

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: - Virtual size: 2KB

.rsrc Size: 5KB - Virtual size: 5KB

.xxx
Size: 129KB - Virtual size: 132KB

CODE
Size: 46KB - Virtual size: 45KB

DATA
Size: 6KB - Virtual size: 5KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 1KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: - Virtual size: 2KB

.rsrc
Size: 5KB - Virtual size: 5KB