ef8bd41c4cc02ef66029cc6e39aeeecd9331af44ee1f0dd1c8fb8588d12c2ffc

Sharing

Copy URL

Twitter E-mail

General

Target

ef8bd41c4cc02ef66029cc6e39aeeecd9331af44ee1f0dd1c8fb8588d12c2ffc
Size

620KB
MD5

a1bd79d22f8ee1f2b714ef563165025d
SHA1

2e76fef8803978d2c4f5b23547c7773ad3b09a3e
SHA256

ef8bd41c4cc02ef66029cc6e39aeeecd9331af44ee1f0dd1c8fb8588d12c2ffc
SHA512

79b83dc5f598982a5a6153a5774ad14cceb99753f822d8c0f61266b6595e5a467308f7312d8ca09dff1122ab01657905cf8c94320b7a119287d9779dfde3a417
SSDEEP

12288:WbJ2NhG2wDtqSDXcB0yIRFlyrAQ25oHwzZVkjnkkjzZrqJFeE3Vk6B9S:y2+2uLDXcB04a8ekrNs1S

Score

N/A

Malware Config

Signatures

Files

ef8bd41c4cc02ef66029cc6e39aeeecd9331af44ee1f0dd1c8fb8588d12c2ffc
.zip
cliente2.exe
.exe windows x86

e6d2310a3daf66398dd6727b406b6211

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
_lclose
GetVolumeInformationA
CreateFileA
GetSystemDirectoryA
lstrcpyA
WaitForSingleObject
Sleep
GetDiskFreeSpaceA
GetSystemInfo
GetFileSize
GetFileAttributesA
GetWindowsDirectoryA
CreateProcessA
lstrcatA
lstrcmpiA
_lread
LocalFileTimeToFileTime
DosDateTimeToFileTime
SetFileTime
CreateDirectoryA
GetFullPathNameA
GetLastError
SetVolumeLabelA
WinExec
OpenFile
VirtualAlloc
VirtualFree
GetDriveTypeA
FindFirstFileA
FindNextFileA
CloseHandle
lstrlenA
GetVersion
LoadLibraryA
GetProcAddress
CompareFileTime
CopyFileA
GetTempPathA
DeleteFileA
SetCurrentDirectoryA
RemoveDirectoryA
ReadFile
_llseek
GetVersionExA
_lwrite
GetTimeZoneInformation
SetFileAttributesA
SetFilePointer
CompareStringW
CompareStringA
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
UnhandledExceptionFilter
RtlUnwind
FreeEnvironmentStringsA
GetFileType
SetHandleCount
GetStdHandle
FlushFileBuffers
GetOEMCP
WriteFile
GetCPInfo
GetStringTypeW
GetACP
LCMapStringW
SetStdHandle
GetStringTypeA
FindClose
LCMapStringA
MultiByteToWideChar
HeapCreate
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetLocalTime
ExitProcess
HeapAlloc
HeapFree
GetCurrentDirectoryA
HeapReAlloc
WideCharToMultiByte

user32

SetWindowLongA
SetTimer
KillTimer
GetWindowLongA
DefWindowProcA
MoveWindow
SetActiveWindow
DdeUninitialize
MessageBoxA
EnableMenuItem
IsDialogMessageA
GetWindowTextA
PostMessageA
UnregisterClassA
RegisterClassA
LoadCursorA
SetWindowWord
EnumWindows
SetWindowPos
EnableWindow
DestroyWindow
ShowWindow
GetMessageA
CreateWindowExA
SetFocus
GetDlgItem
GetParent
GetWindowWord
GetDC
SendMessageA
SetCursor
GetDlgCtrlID
SetWindowTextA
PostQuitMessage
TranslateMessage
DispatchMessageA
PeekMessageA
DestroyIcon
DestroyCursor
GetDesktopWindow
LoadIconA
LoadBitmapA
GetClassInfoA
InvalidateRect
EndPaint
ScreenToClient
CallWindowProcA
GetWindowRect
AdjustWindowRectEx
FrameRect
ReleaseDC
FillRect
DrawFocusRect
GetSysColor
DdeCreateStringHandleA
OemToCharA
DdeInitializeA
DdeCreateDataHandle
DdeConnect
wsprintfA
DdeFreeStringHandle
DdeClientTransaction
DdeGetLastError
BeginPaint
DdeDisconnect
GetClientRect
UpdateWindow
MessageBeep

gdi32

SelectObject
SetTextColor
SetBkMode
TextOutA
DeleteDC
BitBlt
CreateCompatibleDC
DeleteObject
CreateSolidBrush
LineTo
MoveToEx
CreatePen
GetStockObject
GetTextMetricsA
CreateFontIndirectA
EnumFontFamiliesA
GetTextExtentPoint32A
SetBkColor

shell32

SHBrowseForFolder
SHGetPathFromIDList
ShellExecuteA
FindExecutableA

ole32

CoTaskMemFree

mpr

WNetGetConnectionA

advapi32

RegSetValueA
RegQueryValueA
RegSetValueExA
RegCreateKeyA

Sections

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 265B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6d2310a3daf66398dd6727b406b6211

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

mpr

advapi32

Sections

.text Size: 73KB - Virtual size: 73KB

.rdata Size: 512B - Virtual size: 265B

.data Size: 7KB - Virtual size: 114KB

.idata Size: 5KB - Virtual size: 4KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 8KB - Virtual size: 8KB

.text
Size: 73KB - Virtual size: 73KB

.rdata
Size: 512B - Virtual size: 265B

.data
Size: 7KB - Virtual size: 114KB

.idata
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 8KB - Virtual size: 8KB