fffe0fb01519e8042e723bb10b03a9c51360b43000b84c4e04b80655dd417747

Sharing

Copy URL Twitter E-mail

General

Target

fffe0fb01519e8042e723bb10b03a9c51360b43000b84c4e04b80655dd417747
Size

111KB
MD5

bb67248340c736ceecdc2a685a9c65ca
SHA1

a02ebbf511d9f5e41393ecd1ad81b77176833484
SHA256

fffe0fb01519e8042e723bb10b03a9c51360b43000b84c4e04b80655dd417747
SHA512

288b40fa35a66333730f50de4b032494af83deee583313c9b241a49e659c34809865339ec3191ea4589ad385cd6873a7db4278ff59cbc3b459113c080284f0fd
SSDEEP

1536:mlxkjB+T+YM9FCxnZdNpphJ22yt0xqNY2Iuch2DGpHs2OeP3+wMhP5GJiDG5:dAK+ZdHs2yfK2IjhQ2O9LFDDG5

Score

N/A

Malware Config

Signatures

Files

fffe0fb01519e8042e723bb10b03a9c51360b43000b84c4e04b80655dd417747
.exe windows x86

d6174346b04e778a227971c98137cc93

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
DeleteFileW
ReadConsoleA
CopyFileW
ExitThread
CreateProcessA
FindFirstFileA
GetCommandLineA
GetCPInfo
GetFileTime
GetStdHandle
CopyFileExW
OpenFile
DeleteAtom
FindAtomA
GlobalFree
GetComputerNameA
Sleep
CreateDirectoryA

gdi32

GetDCOrgEx
AddFontResourceExA
GetBrushOrgEx
RestoreDC
GetPixel
DeleteObject
CloseFigure
GetPixel
AddFontResourceExW
AbortPath
BitBlt
ClearBrushAttributes
SetTextColor
ClearBitmapAttributes
AddFontResourceA
AddFontResourceTracking
CreateSolidBrush

user32

LoadCursorA
DrawTextA
GetDC
CalcMenuBar
GetFocus
CopyIcon
AppendMenuA
InsertMenuA
GetMenu
LoadMenuA
EndDialog
GetCursor
DrawIcon
DrawIconEx
GetDlgItem
CopyRect
AlignRects
AppendMenuW
BlockInput

advapi32

RegEnumValueW
RegLoadKeyW
RegDeleteValueA
RegOpenKeyExW
RegQueryValueExA
RegCreateKeyW
RegDeleteKeyA
RegEnumKeyW
RegCreateKeyExW
RegReplaceKeyA
RegDeleteKeyW
RegEnumKeyExA
RegReplaceKeyW
RegQueryInfoKeyA
RegQueryValueA
RegCreateKeyExA
RegGetKeySecurity

comctl32

ImageList_AddIcon
ImageList_GetIconSize
ImageList_LoadImageW
ImageList_Draw
ImageList_Copy
ImageList_DrawEx
ImageList_GetIcon
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_Read
ImageList_GetImageRect
ImageList_ReplaceIcon
ImageList_LoadImageA
ImageList_Replace
ImageList_DrawIndirect
ImageList_LoadImage
ImageList_DragMove
ImageList_Destroy

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6174346b04e778a227971c98137cc93

Headers

File Characteristics

Imports

kernel32

gdi32

user32

advapi32

comctl32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 102KB - Virtual size: 174KB

.reloc Size: - Virtual size: 2KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 102KB - Virtual size: 174KB

.reloc
Size: - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB