cf7aabda0b9d0cde6fc40b00e2ae55ca98c20fd01cb10c4ecc7be8ca6dc3a0f7

Sharing

Copy URL

Twitter E-mail

General

Target

cf7aabda0b9d0cde6fc40b00e2ae55ca98c20fd01cb10c4ecc7be8ca6dc3a0f7
Size

308KB
MD5

4c7c0e639fe347bd639430939d4151c0
SHA1

10714d6bde579cba84d53d6c7e97fe75e0ab5eb6
SHA256

cf7aabda0b9d0cde6fc40b00e2ae55ca98c20fd01cb10c4ecc7be8ca6dc3a0f7
SHA512

1d122c13c6616d2f03c7231cf282b1056899fa4192b46d9f4a920edac91d6362ed238dbc883e7eeb6551333a22af65916235c0d4e3a709d3c20dc0cf04671ec4
SSDEEP

6144:fdLF0KcbFDgPBkn+INyggcnUOQz75y3TmmjofR5cFG:Fx0vZ85kVAggcnfQxy3Tu

Score

N/A

Malware Config

Signatures

Files

cf7aabda0b9d0cde6fc40b00e2ae55ca98c20fd01cb10c4ecc7be8ca6dc3a0f7
.exe windows x86

f8db6a2faf75fe31cb57eac92b081314

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragAcceptFiles
DuplicateIcon
ExtractIconEx

comctl32

InitCommonControlsEx
ImageList_GetImageCount

comdlg32

GetFileTitleW
PageSetupDlgW
GetFileTitleA

user32

GetWindowWord
MessageBoxW
CreateWindowExW
PtInRect
TranslateAcceleratorW
SetMenuItemInfoA
SetMenuInfo
GetKeyState
ShowWindow
SubtractRect
RegisterClassA
RegisterClassExA
EnumDesktopsW
SetProcessWindowStation
GetKeyboardType

kernel32

ExitProcess
GetLocaleInfoW
EnterCriticalSection
GetStartupInfoA
FlushFileBuffers
InitializeCriticalSectionAndSpinCount
UnhandledExceptionFilter
OpenMutexA
IsDebuggerPresent
HeapCreate
SetUnhandledExceptionFilter
FreeLibrary
LCMapStringW
WriteConsoleW
LocalReAlloc
SetLastError
GetCommandLineA
CloseHandle
GetOEMCP
SetEnvironmentVariableA
RtlUnwind
ReadFile
WideCharToMultiByte
GetCPInfo
GetModuleHandleA
VirtualAlloc
TlsSetValue
GetCurrentThread
LCMapStringA
Sleep
GetStdHandle
WriteFile
GetLocaleInfoA
CompareStringW
VirtualQuery
GetStringTypeW
CompareStringA
GetModuleFileNameW
GetACP
InterlockedDecrement
GetConsoleCP
LeaveCriticalSection
HeapReAlloc
GetCurrentProcess
CreateFileA
SetConsoleCtrlHandler
HeapFree
HeapDestroy
EnumSystemLocalesA
GetStartupInfoW
GetEnvironmentStringsW
GetConsoleMode
CreateMutexA
IsValidCodePage
DeleteCriticalSection
TlsGetValue
SetFilePointer
LoadLibraryA
GetTimeFormatA
GetTimeZoneInformation
InterlockedExchange
GetStringTypeA
MultiByteToWideChar
HeapSize
IsValidLocale
TlsAlloc
FillConsoleOutputAttribute
WriteConsoleA
GetUserDefaultLCID
GetFileType
GetModuleFileNameA
InterlockedIncrement
GetConsoleOutputCP
GetSystemTimeAsFileTime
GetTickCount
TerminateProcess
SetStdHandle
SetHandleCount
GetLastError
QueryPerformanceCounter
GetCurrentThreadId
GetDateFormatA
GetProcAddress
HeapAlloc
VirtualFree
GetCurrentProcessId
GetCommandLineW
FreeEnvironmentStringsW
TlsFree
GetModuleHandleW

wininet

InternetWriteFileExA
InternetSetDialStateW
SetUrlCacheEntryGroupW
FtpGetCurrentDirectoryA
FindNextUrlCacheEntryExW
InternetDialW
RetrieveUrlCacheEntryFileW

Sections

.text
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f8db6a2faf75fe31cb57eac92b081314

Headers

File Characteristics

Imports

shell32

comctl32

comdlg32

user32

kernel32

wininet

Sections

.text Size: 188KB - Virtual size: 187KB

.rdata Size: 14KB - Virtual size: 21KB

.data Size: 86KB - Virtual size: 86KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 188KB - Virtual size: 187KB

.rdata
Size: 14KB - Virtual size: 21KB

.data
Size: 86KB - Virtual size: 86KB

.rsrc
Size: 18KB - Virtual size: 18KB