cde8a41e9e58f7ebefeeb3d94d35cffe36f5ad556b80b7c4059768522aab2bf6

Sharing

Copy URL Twitter E-mail

General

Target

cde8a41e9e58f7ebefeeb3d94d35cffe36f5ad556b80b7c4059768522aab2bf6
Size

79KB
MD5

4ac80e93b761c60b2df2b7ac214033a0
SHA1

da5ad6c8a17032c0192ebf5517f40fd7b8a4543a
SHA256

cde8a41e9e58f7ebefeeb3d94d35cffe36f5ad556b80b7c4059768522aab2bf6
SHA512

ec7e997c7da4d1f15ddf7560538bdf40f393deb45835bdf1b0db0cf0716252590c318afbb8a213a2f07edd6ef782618af0b5d612de0dda4657ec456609280ac8
SSDEEP

1536:b3frIVwBLzBM1cQSff+h+nhbQvwdYyx7nP:bGwBLNM1PSH+h+hQwdf5nP

Score

N/A

Malware Config

Signatures

Files

cde8a41e9e58f7ebefeeb3d94d35cffe36f5ad556b80b7c4059768522aab2bf6
.exe windows x86

b52ba128281ad15cce7338cf1cde61e3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
WaitForSingleObject
ResetEvent
lstrcpyA
SetEvent
lstrlenA
GetDriveTypeA
LocalFree
CreateFileA
GetModuleFileNameA
CreateProcessA
FreeLibrary
TerminateThread
Sleep
GetStartupInfoA
WriteFile
GetVersionExA
GetLastError
ReleaseMutex
GetTickCount
OpenEventA
SetErrorMode
OutputDebugStringA
InterlockedExchange
LocalAlloc
GetModuleHandleA
RaiseException

msvcrt

strchr
atoi
_beginthreadex
calloc
??1type_info@@UAE@XZ
_exit
_XcptFilter
exit
_acmdln
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
rename
strrchr
_except_handler3
malloc
memmove
??2@YAPAXI@Z
strstr
_ftol
__getmainargs
ceil
_strrev
_CxxThrowException
__CxxFrameHandler
??3@YAXPAX@Z
free

msvcp60

?_Xran@std@@YAXXZ
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Refcnt@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEAAEPBD@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB

Sections

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b52ba128281ad15cce7338cf1cde61e3

Headers

File Characteristics

Imports

kernel32

msvcrt

msvcp60

Sections

.text Size: 48KB - Virtual size: 48KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 6KB - Virtual size: 7KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 48KB - Virtual size: 48KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 6KB - Virtual size: 7KB

.rsrc
Size: 5KB - Virtual size: 5KB