cdcda63008f58fade717ef61990fd86c94dec31405a1940399293184d9a8df1c

Sharing

Copy URL Twitter E-mail

General

Target

cdcda63008f58fade717ef61990fd86c94dec31405a1940399293184d9a8df1c
Size

1.3MB
MD5

b3ae2aec7f5e768715f5fa216a2862de
SHA1

a151e25ec4169d8e98a4191bd54731a95e04a73c
SHA256

cdcda63008f58fade717ef61990fd86c94dec31405a1940399293184d9a8df1c
SHA512

4a4230280e9c07521c5614af867c1f14371da6750ae9c85ba12937966cbba70ee631f85f6e9e3816aca2f26473e563b1ef571e22c1107ebde65ac789f1adeffd
SSDEEP

24576:wO5j/DnAh7m3Bw9iILOXOhe643IMJVvIf7xNngw2QS4G6G+vVrGN:wuM18YrEvTTHQPtG6G+vVrGN

Score

N/A

Malware Config

Signatures

Files

cdcda63008f58fade717ef61990fd86c94dec31405a1940399293184d9a8df1c
.exe windows x86

ef0b3684d33e080ec4359011586e87b6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetLastError
DeleteAtom
Sleep
FindFirstFileA
CopyFileA
CopyFileExA
OpenFile
DeleteFileA
GetCommandLineA
ReadConsoleA
DeleteFileW
GetConsoleMode
CreateProcessA
CreateDirectoryA
ReadConsoleW
WriteFile
GetCPInfo
ReadFile
CopyFileExA
GetLastError
OpenFileMappingA
CreateThread
GetConsoleMode
DeleteFileW
CopyFileA
GetCommandLineA
DeleteFileA
CreateDirectoryA
OpenFileMappingA
GetLastError
GetStdHandle
CopyFileA
CopyFileExA
ReadFile
CopyFileExW
GetFileSize
GetCPInfo
GetFileTime
FindAtomA
CopyFileW
CreateDirectoryA
CreateThread
ReadConsoleA
GetFileTime
GetConsoleMode
CopyFileW
CreateProcessA
GlobalFree
DeleteAtom
GetComputerNameA
GetCommandLineA
ExitThread
CopyFileExA
WriteFile
Sleep
CreateDirectoryA
FindAtomA
CopyFileA
CopyFileExA
CreateThread
GlobalFree
ReadConsoleA
CopyFileW
CreateProcessA
OpenFile
DeleteAtom
GetCommandLineA
GetFileTime
OpenFileMappingA
Sleep
GetConsoleMode
GetCPInfo
WriteFile
GetComputerNameA
ExitThread
ReadFile
CopyFileA
OpenFile
CopyFileExW
GetFileTime
ExitThread
GetLastError
GetConsoleMode
DeleteFileA
DeleteAtom
ReadConsoleW
DeleteFileW
CopyFileExA
CreateDirectoryA

Sections

.bbs
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 24KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 4KB - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef0b3684d33e080ec4359011586e87b6

Headers

File Characteristics

Imports

kernel32

Sections

.bbs Size: 1.2MB - Virtual size: 1.2MB

.itext Size: 8KB - Virtual size: 5KB

.reloc Size: 8KB - Virtual size: 5KB

.edata Size: 24KB - Virtual size: 2.8MB

.bss Size: 4KB - Virtual size: 146B

.rdata Size: 4KB - Virtual size: 24B

.idata Size: 8KB - Virtual size: 6KB

.rsrc Size: 36KB - Virtual size: 32KB

.bbs
Size: 1.2MB - Virtual size: 1.2MB

.itext
Size: 8KB - Virtual size: 5KB

.reloc
Size: 8KB - Virtual size: 5KB

.edata
Size: 24KB - Virtual size: 2.8MB

.bss
Size: 4KB - Virtual size: 146B

.rdata
Size: 4KB - Virtual size: 24B

.idata
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 36KB - Virtual size: 32KB