cdd2a3dae713eb464647018f83a7630eb235077c410cd1736ec51bba80796301

General

Target

cdd2a3dae713eb464647018f83a7630eb235077c410cd1736ec51bba80796301
Size

321KB
MD5

1180f05d1c4061805171a8b5d291b770
SHA1

05955c1346f13f77e167ff3ee9711df879a1277d
SHA256

cdd2a3dae713eb464647018f83a7630eb235077c410cd1736ec51bba80796301
SHA512

f5dfc71ab8f1c86e6c50558c2f59ed0f8e849d6db0b79c29d0893cd64d26e6201ef242a11d0c10e5a620e73901fff93d44ad89f58bf0947c758343caf8e012f6
SSDEEP

6144:9cbtPG5C/gKAKcLgSBK9saverQruwS2R4goQGg2guwV3fzkP:9ch8ifABLHBK9saverouwS2RuQGg2NwK

Score

N/A

Malware Config

Signatures

Files

cdd2a3dae713eb464647018f83a7630eb235077c410cd1736ec51bba80796301
.exe windows x86

6ed0d70c56a61acfb538872bdf7d87f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

cabinet

ord10
ord14

kernel32

GetSystemInfo
GetSystemTimeAsFileTime
GetProcessHeap
SetSystemPowerState
GetCPInfo
FlushFileBuffers
CreateEventW
LocalFree
LocalAlloc
LoadLibraryW
ExitProcess
WideCharToMultiByte
GetFileTime
GetModuleFileNameW
CreateProcessW
SetFileAttributesW
GetProcAddress
SetSystemTimeAdjustment
HeapFree
GetVersionExA
HeapAlloc
GetStartupInfoW
GetLastError
RaiseException
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
MultiByteToWideChar
LCMapStringA
LCMapStringW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
Sleep
HeapSize
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
LoadLibraryA
InitializeCriticalSection
RtlUnwind

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 154KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ed0d70c56a61acfb538872bdf7d87f5

Headers

File Characteristics

Imports

cabinet

kernel32

Sections

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 113KB - Virtual size: 112KB

.data Size: 154KB - Virtual size: 252KB

.rsrc Size: 1024B - Virtual size: 896B

.reloc Size: 7KB - Virtual size: 6KB

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 113KB - Virtual size: 112KB

.data
Size: 154KB - Virtual size: 252KB

.rsrc
Size: 1024B - Virtual size: 896B

.reloc
Size: 7KB - Virtual size: 6KB