cc6b44e7e04e4aaee4234de3d8f31bb992ac4bcfe9837b378d8d9168995b633e

Sharing

Copy URL Twitter E-mail

General

Target

cc6b44e7e04e4aaee4234de3d8f31bb992ac4bcfe9837b378d8d9168995b633e
Size

228KB
MD5

bc4951e5e41dab7e2b521ffd6374ce44
SHA1

c67311e21d2ef297fe099eec73eff2e463de2be2
SHA256

cc6b44e7e04e4aaee4234de3d8f31bb992ac4bcfe9837b378d8d9168995b633e
SHA512

6f1c6856162cd65a6ee49bcef7c9240dcfb23fecb6b3d415e6fbcba9c9bdf181b8d4e3db6b99d019ea71864b3f4827815d1d7ee0905f3745bf5e216c46f9373c
SSDEEP

3072:7XswDt725YqIeoBLDSkz16OfLRqY2xVzxfi8G4nvkX5CV1tgN45aOJuUEPDCblFV:D56pzoLPHbEVzhfG+cwwNWJuUajUb

Score

N/A

Malware Config

Signatures

Files

cc6b44e7e04e4aaee4234de3d8f31bb992ac4bcfe9837b378d8d9168995b633e
.exe windows x86

3f9a5b753bcb0ad52712a6f42c60c039

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
VirtualProtect
GetLocaleInfoA
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
HeapSize
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
VirtualQuery
InterlockedExchange
RtlUnwind
HeapReAlloc
VirtualAlloc
GetStartupInfoA
GetCommandLineA
GetVersionExA
WideCharToMultiByte
GetTimeZoneInformation
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
HeapAlloc
GetACP
GetOEMCP
GetCPInfo
GetSystemInfo

oleaut32

VariantCopy
SafeArrayGetDim
SafeArraySetIID
VarFormatDateTime
GetErrorInfo
VARIANT_UserFree
SetErrorInfo
VarBoolFromDisp
LPSAFEARRAY_Marshal
CreateErrorInfo
VarBstrCmp
LoadTypeLi
VarUdateFromDate
SafeArrayGetRecordInfo
VariantInit
VarFormatPercent
SafeArrayAccessData

shlwapi

StrCSpnW
StrDupA
UrlGetPartW
PathAddBackslashW

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 396KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f9a5b753bcb0ad52712a6f42c60c039

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

oleaut32

shlwapi

Sections

.text Size: 50KB - Virtual size: 50KB

.rdata Size: 139KB - Virtual size: 138KB

.data Size: 33KB - Virtual size: 396KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 50KB - Virtual size: 50KB

.rdata
Size: 139KB - Virtual size: 138KB

.data
Size: 33KB - Virtual size: 396KB

.rsrc
Size: 4KB - Virtual size: 3KB