cafeaca185016fb05d60cf6b871a39f6ebf494ada6b21a2caf5a046586525448

Sharing

Copy URL

Twitter E-mail

General

Target

cafeaca185016fb05d60cf6b871a39f6ebf494ada6b21a2caf5a046586525448
Size

98KB
MD5

0dffaeafa77acca9da4a8233e6d0d6f6
SHA1

500b89803639dbe3e1c97f7303f8ca41aff54562
SHA256

cafeaca185016fb05d60cf6b871a39f6ebf494ada6b21a2caf5a046586525448
SHA512

f75443ee96dbeeec7099f85e2b675398b1e4c4b2474ac48ef8f356908d60106b59dbd00fe2c201bc8f8f395934a68c9b1e143442f434c04e569f8e1d205fab3a
SSDEEP

3072:q2hzgKSXgsmyL9eLwcc9nCRxz+WF11vP5k:q40Kogsmy59x9nCjVvP2

Score

N/A

Malware Config

Signatures

Files

cafeaca185016fb05d60cf6b871a39f6ebf494ada6b21a2caf5a046586525448
.exe windows x86

11c691dc1dc8642a340363d4719a95be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpA
GetModuleHandleA
CloseHandle
WideCharToMultiByte
HeapAlloc
GetDateFormatA
GetFileType
GetFileAttributesA
lstrcatA
FreeLibrary
GlobalFree
lstrcmpiA
lstrcpyA
SetLastError
GetModuleFileNameA
GetStdHandle
GetCPInfo

user32

GetFocus
CopyImage
GetWindowTextLengthA
DialogBoxParamW
DrawTextA
GetDlgItem
CopyIcon
GetMenu
DialogBoxParamA
CopyRect
AppendMenuW
DrawIcon
GetWindowTextA
GetCursor
CreateIcon
DrawIconEx
BlockInput
GetWindowTextLengthA
GetMenu
CloseWindow
IsMenu
GetWindowTextA
GetFocus
GetCursor
AppendMenuA
IsWindow
LoadMenuA
LoadCursorA
DialogBoxParamW
DrawTextW
CopyImage
DrawIcon
DialogBoxParamA
InsertMenuA
CopyRect

comctl32

ImageList_GetIcon
ImageList_GetImageRect
ImageList_AddMasked
ImageList_GetImageInfo
ImageList_Draw
ImageList_Replace
ImageList_GetIconSize
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_GetImageCount
ImageList_LoadImage
ImageList_Create
ImageList_DragEnter
ImageList_DragMove
ImageList_ReplaceIcon
ImageList_Read
ImageList_Copy

advapi32

RegEnumKeyA
RegEnumValueW
RegQueryValueExA
RegDeleteValueW
RegQueryValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegOpenKeyW
RegReplaceKeyW
RegReplaceKeyA
RegDeleteKeyW
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyW
RegLoadKeyW
RegDeleteValueA

Sections

.FwplfE
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.yucjtR
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.poaF
Size: 512B - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.isfnpw
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crnKf
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

11c691dc1dc8642a340363d4719a95be

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

Sections

.FwplfE Size: 15KB - Virtual size: 14KB

.yucjtR Size: 28KB - Virtual size: 28KB

.poaF Size: 512B - Virtual size: 46KB

.isfnpw Size: 1024B - Virtual size: 1KB

.crnKf Size: 1024B - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 4KB

.FwplfE
Size: 15KB - Virtual size: 14KB

.yucjtR
Size: 28KB - Virtual size: 28KB

.poaF
Size: 512B - Virtual size: 46KB

.isfnpw
Size: 1024B - Virtual size: 1KB

.crnKf
Size: 1024B - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 4KB