cb36fdf999d261a0097c81cdf45a4e1179c26a17e39a4e13cadb09c572002e42

General

Target

cb36fdf999d261a0097c81cdf45a4e1179c26a17e39a4e13cadb09c572002e42
Size

448KB
MD5

63aa4d0651a5b2a690f610d1d7b3b5e1
SHA1

21259d706e041006decedfe7a0d8cc72a92d44ae
SHA256

cb36fdf999d261a0097c81cdf45a4e1179c26a17e39a4e13cadb09c572002e42
SHA512

fa6ac3f95173e63136f3e99d00c984abcd1309fef2d41e3ff6b7f59dadb83548afcb3c942b99a8ddc089d0b67d9c93d6ad292aca4bc9f031f8565c55d9242c11
SSDEEP

6144:hePRxEGvl/djKjTVKDO8Ltfepaw+lgSs/o6tBRzifOUMYFx4JQB:heZqG9/djtOqfq+lgU6tHjUMgx4JM

Score

N/A

Malware Config

Signatures

Files

cb36fdf999d261a0097c81cdf45a4e1179c26a17e39a4e13cadb09c572002e42
.exe windows x86

cdd336fccd0266615c3118aa76936cda

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
WriteFile
SetEvent
GetModuleHandleA
GetProcAddress
GetLastError
CreateThread
VirtualAlloc
FlushFileBuffers
SetStdHandle
SetFilePointer
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
HeapFree
RtlUnwind
IsBadWritePtr
IsBadReadPtr
HeapValidate
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc
LoadLibraryA
DebugBreak
InterlockedDecrement
OutputDebugStringA
InterlockedIncrement
CloseHandle

user32

ShowWindow
GetClientRect
EnableWindow
GetActiveWindow

msvfw32

DrawDibSetPalette

msacm32

acmFormatChooseA

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 236KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 152KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cdd336fccd0266615c3118aa76936cda

Headers

File Characteristics

Imports

kernel32

user32

msvfw32

msacm32

Sections

.text Size: 36KB - Virtual size: 34KB

.rdata Size: 236KB - Virtual size: 233KB

.data Size: 152KB - Virtual size: 154KB

.rsrc Size: 20KB - Virtual size: 229KB

.text
Size: 36KB - Virtual size: 34KB

.rdata
Size: 236KB - Virtual size: 233KB

.data
Size: 152KB - Virtual size: 154KB

.rsrc
Size: 20KB - Virtual size: 229KB