cb07a14880c1f8591fa9ba17e9b4076cab2163c5305428b45b36b42b2e09724c

Sharing

Copy URL

Twitter E-mail

General

Target

cb07a14880c1f8591fa9ba17e9b4076cab2163c5305428b45b36b42b2e09724c
Size

184KB
MD5

c35e41c823f55f7d232767214d406417
SHA1

4d43cf4465cf32ef8e08eaeebb0e2c892ffa395e
SHA256

cb07a14880c1f8591fa9ba17e9b4076cab2163c5305428b45b36b42b2e09724c
SHA512

ad694ccdeb4253ee5937224cd61a9572ba379bff5fc3e8c5bebe5a15d8f310e11170bead5625140648a3baef2fb3845cb29f5d8b4475bbc139f06a8f8e0a3aa2
SSDEEP

3072:iE6mCD2nho7pxxhn2VO9UcKqdZnYrJhOmUO+q5/1ltzB1EunycTbXDtn:sR2hMrnpRndZYfzvF5tHzMeTbXd

Score

N/A

Malware Config

Signatures

Files

cb07a14880c1f8591fa9ba17e9b4076cab2163c5305428b45b36b42b2e09724c
.exe windows x86

06a0a1853260ff5881f5cc87cd6d3ea6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RemoveDirectoryW
CreateDirectoryW
MoveFileW
FindFirstFileW
GetCalendarInfoW
SystemTimeToFileTime
ReadFile
GetCurrentProcessId
GetModuleFileNameW
DeleteFileW
CreateFileW
WideCharToMultiByte
GetLocaleInfoW
GetCurrentDirectoryW
LoadLibraryW
SetFilePointer
GetFileAttributesW
EnumResourceNamesA
EnumResourceLanguagesW
lstrcpyW
GetVersion
InterlockedDecrement
FindNextFileW
ExitProcess
FindClose
GetSystemDefaultLangID
MultiByteToWideChar
LocalFileTimeToFileTime
ConvertDefaultLocale
WriteFile
SetFileTime
GetProcAddress

user32

IsRectEmpty
CreateWindowExW
CharUpperW
SetPropW
WinHelpW
GetNextDlgTabItem
SetRect
GetNextDlgGroupItem
CharNextW
GetClassLongW
CopyAcceleratorTableW
SendDlgItemMessageA
GetPropW
InvalidateRect
RegisterWindowMessageW
GetClassInfoExW
MessageBeep
RemovePropW
InvalidateRgn
DestroyMenu

shlwapi

PathFileExistsW
PathStripToRootW
PathFindExtensionW
PathIsUNCW
PathFindFileNameW
PathRemoveFileSpecW
PathAppendW

oleacc

LresultFromObject
CreateStdAccessibleObject

advapi32

RegCreateKeyExW
RegDeleteKeyW
RegQueryInfoKeyW
RegQueryValueW
RegOpenKeyW
RegEnumKeyExW
RegSetValueExW
RegOpenKeyExW
RegCloseKey
RegEnumKeyW
RegQueryValueExW

ole32

StgCreateDocfileOnILockBytes
CoGetClassObject
StgOpenStorageOnILockBytes
CoTaskMemFree
CoInitialize
OleFlushClipboard
CoRetireServer
CLSIDFromProgID
CreateILockBytesOnHGlobal
CoRevokeClassObject
OleUninitialize
CoUninitialize
CoCreateInstance
CoTaskMemAlloc
CoFreeUnusedLibraries
CoRegisterMessageFilter
OleInitialize
OleIsCurrentClipboard
CLSIDFromString

gdi32

Escape
TextOutW
ExtTextOutW
SetWindowExtEx
DeleteDC
RectVisible
ExtSelectClipRgn
GetTextColor
PtVisible
GetDeviceCaps
ScaleViewportExtEx
OffsetViewportOrgEx
GetBkColor
GetMapMode
GetStockObject
SelectObject
SetViewportOrgEx
ScaleWindowExtEx
GetRgnBox

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06a0a1853260ff5881f5cc87cd6d3ea6

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

oleacc

advapi32

ole32

gdi32

shell32

Sections

.text Size: 101KB - Virtual size: 100KB

.rdata Size: 3KB - Virtual size: 3KB

.bss Size: 77KB - Virtual size: 77KB

.edata Size: 1024B - Virtual size: 240KB

.text
Size: 101KB - Virtual size: 100KB

.rdata
Size: 3KB - Virtual size: 3KB

.bss
Size: 77KB - Virtual size: 77KB

.edata
Size: 1024B - Virtual size: 240KB