ccf405e53040a834cc0ff0f9fc797fb5d735cc6d9c3bb9239e176800136cd3ca

Sharing

Copy URL Twitter E-mail

General

Target

ccf405e53040a834cc0ff0f9fc797fb5d735cc6d9c3bb9239e176800136cd3ca
Size

47KB
MD5

21e6a2990163fae439562aca160c5f90
SHA1

d67a5c2bac56618309c316aa058c7e4d482e4bb1
SHA256

ccf405e53040a834cc0ff0f9fc797fb5d735cc6d9c3bb9239e176800136cd3ca
SHA512

24137adb3580646b277d50ccff16df35e98a679378896796001bc3b6c1438ab4f80cff4fa60a055e8c5b5c85c413e6dc96cdc5fedda759dada3af29899f6729a
SSDEEP

768:vmQzphsYuLSGirZ83V8wUoF+oZKh+rJ9h/X9N1FY3Up03MZlMZPV3L91:fpYLSTrC3GHAFX9Jp9lMpRR1

Score

N/A

Malware Config

Signatures

Files

ccf405e53040a834cc0ff0f9fc797fb5d735cc6d9c3bb9239e176800136cd3ca
.exe windows x86

dd277f96da8d6cd154323eaf014027e5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadModule
SetThreadAffinityMask
SetConsoleCP
RtlMoveMemory
GlobalDeleteAtom
GetCommandLineW
GetNamedPipeInfo
SetEndOfFile
GetConsoleFontInfo
CreateEventA
PulseEvent
LoadLibraryA
InterlockedExchangeAdd
SwitchToThread
SetConsoleCursorInfo
HeapCreate
GetThreadSelectorEntry
SetConsoleKeyShortcuts
LZCopy
MapUserPhysicalPagesScatter
LoadResource
_llseek
GetOEMCP
VirtualAlloc
_hwrite
VirtualAllocEx
PeekConsoleInputA
SetTapeParameters
SetStdHandle
SetConsoleActiveScreenBuffer
SetConsoleFont
SetupComm
TransmitCommChar
GetConsoleProcessList
GlobalAlloc
GetConsoleAliasExesLengthW
CreateDirectoryExA
ScrollConsoleScreenBufferA
WriteProfileStringA
GetFirmwareEnvironmentVariableW
OpenThread
ExitProcess
AddConsoleAliasA
RtlZeroMemory
SetProcessAffinityMask
GetPrivateProfileStringW
QueryInformationJobObject
GetCommMask
GetConsoleMode
GetNumberOfConsoleInputEvents
PeekNamedPipe
WaitNamedPipeW
GetBinaryTypeA
lstrcpyA
SetConsoleWindowInfo
CopyFileExA
LockResource
GetTickCount
SetConsoleInputExeNameA
LocalLock
GetModuleHandleW
SetThreadPriorityBoost
CreateIoCompletionPort
GetPrivateProfileIntA
GetSystemDefaultUILanguage

cfgmgr32

CM_Get_Res_Des_Data_Size
CM_Test_Range_Available
CM_Invert_Range_List
CM_Enumerate_Classes
CM_Detect_Resource_Conflict_Ex
CM_Get_Device_Interface_List_ExW
CM_Delete_Class_Key_Ex
CM_Get_Device_Interface_List_Size_ExA
CM_Get_Device_ID_ExW
CM_Get_Resource_Conflict_DetailsA
CM_Get_Class_Name_ExA
CM_Get_Depth
CM_Add_Range
CMP_WaitServicesAvailable
CM_Get_Class_Key_NameW
CM_Get_Class_Key_NameA
CM_Get_Device_ID_Size_Ex
CM_Set_HW_Prof_Flags_ExW
CM_Set_DevNode_Registry_Property_ExW
CM_Reenumerate_DevNode
CM_Enumerate_EnumeratorsA
CM_Move_DevNode_Ex
CM_Get_Version
CM_Setup_DevNode
CM_Create_DevNode_ExA
CM_Query_Arbitrator_Free_Size

duser

DUserGetScalePRID
GetDebug
GetGadgetAnimation
DUserInstanceOf
DUserGetRotatePRID
GetStdPalette
GetMessageExA
IsStartDelete
GetGadgetRotation
AttachWndProcW
DUserPostEvent
PeekMessageExW
GetGadgetProperty
BuildAnimation
SetGadgetStyle
IsGadgetParentChainStyle
AutoTrace
UnregisterGadgetProperty
FindStdColor
GetStdColorPenF
DllMain
GetGadgetSize
DeleteHandle
AddGadgetMessageHandler
GetStdColorF
InitGadgetComponent
DUserGetRectPRID

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dd277f96da8d6cd154323eaf014027e5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

cfgmgr32

duser

Sections

.text Size: 37KB - Virtual size: 37KB

.rdata Size: 7KB - Virtual size: 6KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 37KB - Virtual size: 37KB

.rdata
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 1KB - Virtual size: 1KB