cf08331fac5d33d640531e65821285a523e26941010ca2e283072af78af79be3

Sharing

Copy URL Twitter E-mail

General

Target

cf08331fac5d33d640531e65821285a523e26941010ca2e283072af78af79be3
Size

1.9MB
MD5

bf664d9b5632fe660fb23c66ea148511
SHA1

a056f9f01e607c272ff7e8893ab4d562ad216da5
SHA256

cf08331fac5d33d640531e65821285a523e26941010ca2e283072af78af79be3
SHA512

ff922baf54a7a1c6a3eef790c4dfdf459158db48b2465e796bb4ac1f2cedc47b4ec123ad37684135438639c47cf10bf8462fdef5d4703497f51b918736a1de9a
SSDEEP

49152:i5p5q+3KhMUvqAKgyu3p95G7Q9LIjBaUnZo4:6zIZZ3JqE4

Score

N/A

Malware Config

Signatures

Files

cf08331fac5d33d640531e65821285a523e26941010ca2e283072af78af79be3
.exe windows x86

6e1182b780cdcc14c150b354aa12dfb2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetStockObject
SelectObject

kernel32

GetTickCount
GetCurrentThread
GetLastError
GetModuleHandleA
GetCurrentProcessId
GetCurrentThreadId
GetVersion
GetCommandLineA
ExitProcess
HeapAlloc
GetProcessHeap
VirtualAlloc
Sleep
CreateProcessW
FindResourceW
HeapCreate
WideCharToMultiByte
CreateProcessA
GetEnvironmentStrings
GetModuleHandleW
GetACP
CloseHandle
TlsFree
MapViewOfFile
RaiseException
GetCurrentDirectoryA
LockResource
SizeofResource
GetShortPathNameA
GlobalUnlock
GetThreadLocale
LCMapStringA
GlobalFree
SetStdHandle
InterlockedIncrement
TlsSetValue
CreateEventA
CreateFileW
GetTimeZoneInformation
GetProcAddress
FindFirstFileW
lstrcpyA
FindNextFileW
GlobalLock
GetWindowsDirectoryA
DeleteFileA
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
SetEvent
SetHandleCount
EnterCriticalSection
WriteConsoleW
LeaveCriticalSection
GetLocaleInfoA
VirtualQuery
SetUnhandledExceptionFilter
TerminateProcess
MulDiv
CreateFileA
SetFileAttributesA
CreateThread
SetFilePointer
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
IsDebuggerPresent
FormatMessageA
TlsGetValue
FindClose
InitializeCriticalSection
LocalFree
FreeLibrary
GetFullPathNameA
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
GetCPInfo
SetErrorMode
LocalAlloc
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
GetStdHandle

user32

GetSysColor
MessageBoxA
SetForegroundWindow
GetSubMenu
ReleaseCapture
GetWindowRect
GetSystemMetrics
DefWindowProcA
GetWindowLongA
RegisterClassA
ShowWindow
GetParent
DestroyWindow
GetActiveWindow
ReleaseDC
GetDC
EndPaint
IsWindow
SetWindowPos
DestroyMenu

Sections

.text
Size: 1.9MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6e1182b780cdcc14c150b354aa12dfb2

Headers

File Characteristics

Imports

gdi32

kernel32

user32

Sections

.text Size: 1.9MB - Virtual size: 2.2MB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 9KB - Virtual size: 9KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 1.9MB - Virtual size: 2.2MB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 32KB - Virtual size: 31KB