fddeafd9b73278f7a4e2cb0404f6e47da78e2e0beb3eb4730220444c5196e9b0

General

Target

fddeafd9b73278f7a4e2cb0404f6e47da78e2e0beb3eb4730220444c5196e9b0
Size

284KB
MD5

0b50b1788371e14d0da50a30865ab6ce
SHA1

46e65f2abe23f2e7e807556c6d18cecf5a959182
SHA256

fddeafd9b73278f7a4e2cb0404f6e47da78e2e0beb3eb4730220444c5196e9b0
SHA512

c39e02495eafcd2e562405c0c2c14aa1780487ca583083e0c164f6b9379ebf44a410d40cf0aef79317bab67ac594da41f5b1053580c6fd100d95b645ff166a91
SSDEEP

6144:YxWKIoNuqnvX2/Qyj7hCnszVJdkiXom5v/JNilbtbbFxbUi8jI:YxWKIwvrRn+fdbFHNYb/YiW

Score

N/A

Malware Config

Signatures

Files

fddeafd9b73278f7a4e2cb0404f6e47da78e2e0beb3eb4730220444c5196e9b0
.exe windows x86

597e318c69c43b053c82d438e825bd20

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

shell32

ShellExecuteA
Shell_NotifyIconA

oleacc

CreateStdAccessibleObject

shlwapi

StrRetToStrA
PathIsContentTypeA
PathAppendA
PathIsFileSpecA
SHCreateStreamOnFileEx
PathCreateFromUrlW

kernel32

GetLocaleInfoW
GlobalHandle
FindAtomW
InterlockedExchange
RaiseException
TlsSetValue
HeapSetInformation
lstrlenA
TlsAlloc
lstrcmpW
SetLastError
TlsFree
GetTickCount
GlobalUnlock
FlushInstructionCache
CloseHandle
EnterCriticalSection
GetOEMCP
MultiByteToWideChar
DeleteCriticalSection
InitializeCriticalSection
SetUnhandledExceptionFilter
GetComputerNameW
EnumResourceNamesA
LocalAlloc
GetCurrentProcess
GlobalLock
GetStringTypeA
TlsGetValue
InterlockedDecrement
MulDiv
GlobalFree
InterlockedIncrement
LeaveCriticalSection
GlobalAlloc
GetCurrentThreadId
SetLastError
FormatMessageW
WaitForSingleObject
lstrlenW
CreateFileW
WideCharToMultiByte

Sections

.text
Size: 140KB - Virtual size: 275KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

597e318c69c43b053c82d438e825bd20

Headers

File Characteristics

Imports

shell32

oleacc

shlwapi

kernel32

Sections

.text Size: 140KB - Virtual size: 275KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 141KB - Virtual size: 141KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 140KB - Virtual size: 275KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 141KB - Virtual size: 141KB

.rsrc
Size: 512B - Virtual size: 4KB