cfbecd0b2924edcc38fcab160a48a459c1d4207c16de61172392e532276dd330

General

Target

cfbecd0b2924edcc38fcab160a48a459c1d4207c16de61172392e532276dd330
Size

34KB
MD5

374550cfac2a765f1346ce1282afec0c
SHA1

4daa0f1e048d565b02d0f17cb05f4361e0a25d4a
SHA256

cfbecd0b2924edcc38fcab160a48a459c1d4207c16de61172392e532276dd330
SHA512

3cfd38aae4006f5e58f5b4ee5a7d68522abbf9ab6edc5f4426cfde9ae920309cb9a6a83871e186053954aff0b53af61aac210bad6514701ce1430aba1017a5c1
SSDEEP

768:DSVuLd7S72HEryzryVxaIbTUkkJMswxNgw553Mej8:DSoB7S7wsqe3fUr8N/51xY

Score

N/A

Malware Config

Signatures

Files

cfbecd0b2924edcc38fcab160a48a459c1d4207c16de61172392e532276dd330
.exe windows x86

4e2fbd86a6c503098b3ddc6d8a43e3eb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
RegOpenKeyExW
RegDeleteKeyW
RegReplaceKeyW
RegQueryValueExW
RegOpenKeyA
RegQueryInfoKeyW
RegFlushKey
RegQueryInfoKeyA
RegDeleteValueA
RegEnumValueA
RegQueryValueA
RegEnumKeyW
RegOpenKeyExA
RegEnumKeyExW
RegCreateKeyW
RegLoadKeyW

comctl32

InitCommonControls
ImageList_Read
ImageList_DragEnter
ImageList_GetImageRect
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_Remove
ImageList_DragLeave
ImageList_DragMove
ImageList_BeginDrag
ImageList_LoadImage
ImageList_Replace
ImageList_GetIconSize
ImageList_LoadImageA
ImageList_Copy
ImageList_Create
ImageList_GetDragImage
ImageList_Draw
ImageList_DrawIndirect
ImageList_Destroy

kernel32

GetLastError
GetFileSize
CopyFileExW
DeleteAtom
ReadFile
GetCPInfo
ExitThread
GlobalFree
ReadConsoleA
Sleep
CreateThread
CreateProcessA
DeleteFileW
CopyFileW
CopyFileA
GetStdHandle
OpenFile
CopyFileExA
SetLastError

user32

GetWindowTextLengthA
DrawIconEx
CopyRect
AppendMenuW
CalcMenuBar
InsertMenuA
AppendMenuA
GetDlgItem
BlockInput
IsWindow
CreateIcon
DrawIcon
GetCursor
DrawTextW
DialogBoxParamW
GetFocus
GetMenu
EndDialog
AlignRects

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e2fbd86a6c503098b3ddc6d8a43e3eb

Headers

File Characteristics

Imports

advapi32

comctl32

kernel32

user32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 25KB - Virtual size: 91KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 25KB - Virtual size: 91KB

.rsrc
Size: 1KB - Virtual size: 1KB