cdcbe32116ddd04609349e53027a7d9ab3a3805068272d5d2fc99b9e9d2c2bba

Sharing

Copy URL Twitter E-mail

General

Target

cdcbe32116ddd04609349e53027a7d9ab3a3805068272d5d2fc99b9e9d2c2bba
Size

139KB
MD5

ea21e9e63fc7d753c0177074cc9cd435
SHA1

252f8c7f93d5b1a43f92fab4435eb72f1b7f60e9
SHA256

cdcbe32116ddd04609349e53027a7d9ab3a3805068272d5d2fc99b9e9d2c2bba
SHA512

5363170789ca814e22ee720c7f8832990fc5cc2652a45d39467925c7379e0aed4f72e06e6de1733b08e70915105800e5125ea3a92abd1905d5074a6a41391ef6
SSDEEP

3072:7mpIev6EFGLObwce3eykx4KoTehB7VUv6h+D3WfR16H3h05B0B/S:xu6ESObR5yxTef7ViGfbiUBgS

Score

N/A

Malware Config

Signatures

Files

cdcbe32116ddd04609349e53027a7d9ab3a3805068272d5d2fc99b9e9d2c2bba
.exe windows x86

7a7dc815a6240bcfdd24edf64c4d804c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

HBRUSH_UserFree
OleCreateDefaultHandler
CoGetDefaultContext
CoQueryAuthenticationServices
ComPs_NdrDllGetClassObject
OleNoteObjectVisible
CoAllowSetForegroundWindow
CoLoadLibrary
CoPushServiceDomain
CoFreeUnusedLibrariesEx
HMETAFILE_UserMarshal
HMENU_UserSize
HPALETTE_UserFree
FmtIdToPropStgName
HGLOBAL_UserMarshal
CoQueryProxyBlanket
CreateItemMoniker
CoInitializeSecurity
CoGetObject
CoGetMarshalSizeMax
CoLockObjectExternal
OleRegEnumFormatEtc
WriteClassStm
OleConvertIStorageToOLESTREAMEx
CoGetInterceptorFromTypeInfo
SNB_UserFree
OleBuildVersion
RevokeDragDrop
CoSetProxyBlanket
OleGetAutoConvert
OleQueryCreateFromData
HWND_UserMarshal
DllGetClassObject

kernel32

PeekConsoleInputW
GetLocaleInfoW
Process32NextW
GetFullPathNameW
GetModuleHandleW
LoadLibraryW
DeleteFiber
SetPriorityClass
FlushConsoleInputBuffer
LocalHandle
VirtualAllocEx
GetCurrentThread
GetSystemDefaultUILanguage
Heap32Next
GetUserDefaultUILanguage

dssec

DllCanUnloadNow
DSCreateISecurityInfoObject
DllGetClassObject
DSCreateSecurityPage
DSCreateISecurityInfoObjectEx
DSEditSecurity

perfctrs

CollectNbfPerformanceData
CloseDhcpPerformanceData
OpenDhcpPerformanceData
OpenNbfPerformanceData
CloseTcpIpPerformanceData
OpenNWNBPerformanceData
CollectNWNBPerformanceData
OpenTcpIpPerformanceData

faultrep

ReportHang
AddERExcludedApplicationA
AddERExcludedApplicationW
ReportFault

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a7dc815a6240bcfdd24edf64c4d804c

Headers

File Characteristics

Imports

ole32

kernel32

dssec

perfctrs

faultrep

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 53KB - Virtual size: 52KB

.data Size: 22KB - Virtual size: 21KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 53KB - Virtual size: 52KB

.data
Size: 22KB - Virtual size: 21KB

.rsrc
Size: 10KB - Virtual size: 9KB