cc27f8fedea195a124a65f2557b739143a74bf46b58e2ed9eb7942bdd0ded167

Sharing

Copy URL

Twitter E-mail

General

Target

cc27f8fedea195a124a65f2557b739143a74bf46b58e2ed9eb7942bdd0ded167
Size

363KB
MD5

d84fd415b225817402dd4d5e4033700e
SHA1

c76d213d456c9e1007d71ddeb999691e0c38aa6a
SHA256

cc27f8fedea195a124a65f2557b739143a74bf46b58e2ed9eb7942bdd0ded167
SHA512

3eddba3d6fec8b6b894ddeb00e6370a4e7ad94d38195b86698e0ed06b1a59f0a3bd9b221a1fda6c298157a4490334821e3c875f264565f726d2c20c4fc14d551
SSDEEP

6144:DU2yTqF84LY4SLUn+uxRz1XeEfSS6PzkGFD2xMrBY8ZykuwEn10DIs3d:DUrsYW+u4dkGFCxMrzykuwHI8

Score

N/A

Malware Config

Signatures

Files

cc27f8fedea195a124a65f2557b739143a74bf46b58e2ed9eb7942bdd0ded167
.exe windows x86

bdf1f3dfc27581c15ef4d94578c6275c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoUninitialize
CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc

kernel32

HeapDestroy
FreeLibrary
LocalFree
LocalAlloc
GetOEMCP
GetWindowsDirectoryW
IsProcessorFeaturePresent
VirtualProtect
GetModuleHandleA
GetStartupInfoW
GetVersionExA
GetProcAddress
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
GetModuleFileNameW
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
RaiseException
HeapCreate
VirtualFree
HeapFree
LoadLibraryA
HeapAlloc
VirtualAlloc
HeapReAlloc
IsBadWritePtr
RtlUnwind
InterlockedExchange
VirtualQuery
GetStringTypeA
GetStringTypeW
LCMapStringA
WideCharToMultiByte
LCMapStringW
HeapSize
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetLocaleInfoA
GetCPInfo
GetSystemInfo
GetACP

Exports

Exports

ButWater
Realfor

Sections

.text
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 598KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 1024B - Virtual size: 922B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bdf1f3dfc27581c15ef4d94578c6275c

Headers

File Characteristics

Imports

ole32

kernel32

Exports

Exports

Sections

.text Size: 192KB - Virtual size: 191KB

.rdata Size: 66KB - Virtual size: 65KB

.data Size: 78KB - Virtual size: 598KB

.idata Size: 2KB - Virtual size: 2KB

.didat Size: 1024B - Virtual size: 922B

.rsrc Size: 22KB - Virtual size: 22KB

.text
Size: 192KB - Virtual size: 191KB

.rdata
Size: 66KB - Virtual size: 65KB

.data
Size: 78KB - Virtual size: 598KB

.idata
Size: 2KB - Virtual size: 2KB

.didat
Size: 1024B - Virtual size: 922B

.rsrc
Size: 22KB - Virtual size: 22KB