cecdf6770da5879905a535a0bec46a80d2972de7c526682e3ecd1695761970d7

General

Target

cecdf6770da5879905a535a0bec46a80d2972de7c526682e3ecd1695761970d7
Size

223KB
MD5

f4610183d6c0039184cc28a270054521
SHA1

0ef410ec1acca6918f1eccf21acf3c60e1e02174
SHA256

cecdf6770da5879905a535a0bec46a80d2972de7c526682e3ecd1695761970d7
SHA512

53236766aea7c5a564e6eb5f049f5b91ac5c27cef1aea49e98889e276a12a34df5e579a60e6521bd9ce627772aee220337efe2394632da464d7acc196da15109
SSDEEP

3072:Z0ov3IuvsNSupOexHw1UJ6w13dpFgxHJd4QsYXkvbUVvKtwTDqvI0pF4y2tH:Z0oLvsIexsUvdUx62ytwT2hpF9A

Score

N/A

Malware Config

Signatures

Files

cecdf6770da5879905a535a0bec46a80d2972de7c526682e3ecd1695761970d7
.exe windows x86

aab25d641d04fa52635a91497b4040c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_initterm
__setusermatherr
strerror
_controlfp
_except_handler3
memmove
_spawnvpe
_wstat64
_mbsnbcmp
_exit
_mktime64
_popen
_set_error_mode
bsearch
_strnset
_inpd
_control87
_spawnlpe
_callnewh
_read
_cgetws
_mbsnbset
_wgetenv
_mbsicoll
wcsncat
_strnicoll
_wfindnext
wcscpy
_adjust_fdiv
abort
memcpy
fclose
__getmainargs
_getdcwd
exit
__p__fmode
_fputwchar
_itow
_XcptFilter
_wstati64
_wstrdate
_acmdln
cosh
_mbsncoll
__p__commode
_wspawnlpe
_ctime64
_spawnl
_hypot
__set_app_type

kernel32

GetSystemTimeAsFileTime
HeapAlloc
SetUnhandledExceptionFilter
CreateEventW
GetCurrentProcess
ResetEvent
GetFileTime
lstrcpynA
GetEnvironmentStringsW
GetProcAddress
HeapCreate
SetProcessWorkingSetSize
GetEnvironmentStrings
FileTimeToLocalFileTime
SetEnvironmentVariableA
GetFileAttributesA
SetStdHandle
LocalAlloc
lstrcpyA
GetModuleHandleA
CreateEventA
IsValidCodePage
GetCommandLineW
FindClose
SetLastError
GetStartupInfoA
GetVersionExA
HeapSize
GetDriveTypeA
GetVersion
GetTickCount
Module32Next
ReadFile
SetHandleCount
QueryPerformanceFrequency
QueryPerformanceCounter
GetStdHandle

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 210KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 151B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aab25d641d04fa52635a91497b4040c8

Headers

File Characteristics

Imports

msvcrt

kernel32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 210KB - Virtual size: 209KB

.data Size: 512B - Virtual size: 151B

.rsrc Size: 512B - Virtual size: 100B

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 210KB - Virtual size: 209KB

.data
Size: 512B - Virtual size: 151B

.rsrc
Size: 512B - Virtual size: 100B