ca9f33577ab27aedbe53381116e8845ceda736abaaa29b8e7bdf8ab623c6de8c

Sharing

Copy URL Twitter E-mail

General

Target

ca9f33577ab27aedbe53381116e8845ceda736abaaa29b8e7bdf8ab623c6de8c
Size

164KB
MD5

2c9b6d0bdeee3d06cd8d4efc0635ab53
SHA1

49e1b7ece02caa5a3e7dace49f41850a5cc7a19b
SHA256

ca9f33577ab27aedbe53381116e8845ceda736abaaa29b8e7bdf8ab623c6de8c
SHA512

d53b40856b079c78fa65366c76624bce00ced5fb0741a5bd42aa6247e1a42af9695cfc6b7f9bb2a2bfe0817d4dd2858e28d7581673cc9f9e58d7b9ee58cc40d0
SSDEEP

3072:hI61znxQLzE5cRRIoYoED653frYziUnSRY7Oz:S6xnUzEiRIlDG3MITz

Score

N/A

Malware Config

Signatures

Files

ca9f33577ab27aedbe53381116e8845ceda736abaaa29b8e7bdf8ab623c6de8c
.exe windows x86

faa1a07f32ef368253310fed36f1711d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
ReadConsoleW
CopyFileW
GetFileSize
GetFileTime
FindResourceW
GetFileTime
CloseHandle
GetConsoleMode
CloseHandle
CopyFileW
DeleteFileA
CreateDirectoryA
ReadConsoleW
Sleep
GlobalFree
DeleteFileA
ReadConsoleW
ReadFile
FindNextVolumeA
CopyFileExW
GetComputerNameA
CreateMutexW
ExitProcess
FindFirstFileA
FindNextFileA
CopyFileExW
CreateFileA
CreateFileA
CreateDirectoryA
FindResourceA
AddAtomA
GetComputerNameA
CreateMutexA
DeleteFileW
FindNextFileA
GetCPInfo
GetConsoleMode
OpenFileMappingA
FindNextFileA
CreateMutexA
DeleteFileW
ReadConsoleW
CopyFileA
CreateDirectoryA
CreateFileA
GetFileTime
WriteFile
CopyFileExW
OpenFileMappingA
ReadConsoleW
CloseHandle
AddAtomA
WriteFile
GetComputerNameA
CreateDirectoryA
FindResourceW
DeleteFileA
ExitProcess
FindResourceA
GetStdHandle
CopyFileW
Sleep
AddAtomA
CopyFileA
ReadConsoleW
GetStdHandle
ReadFile
GetConsoleMode
GetFileSize
CreateMutexA
Sleep
Sleep
OpenFileMappingA
CopyFileA
FindNextVolumeA
DeleteFileA
ReadConsoleW
GetCPInfo
ReadFile
GetComputerNameA
DeleteFileA
CloseHandle
ReadConsoleW
GetFileTime
OpenFileMappingA
WriteFile
GetConsoleMode
GetFileTime
ReadConsoleW
GlobalFree
CreateMutexA
CloseHandle
CopyFileExW
FindNextFileA
FindResourceW
CreateDirectoryA
AddAtomA
CreateMutexA
ReadFile
ExitProcess
CopyFileExW
AddAtomA
ReadConsoleW
GetStdHandle
DeleteFileW
GetFileSize
ReadConsoleW
GetConsoleMode
CreateDirectoryA
FindResourceA
CopyFileExW
FindFirstFileA
AddAtomA
DeleteFileW
FindNextFileA
GetComputerNameA
CopyFileA
FindResourceA
ReadConsoleW
CreateMutexW
OpenFileMappingA
FindNextVolumeA
FindFirstFileA
CopyFileW
GetStdHandle
GetFileTime
ReadConsoleW
FindResourceW
Sleep
CreateMutexA
GetCPInfo
CreateFileA
GetFileSize
CreateMutexW
FindResourceW
GetComputerNameA
ReadFile
CreateMutexA
GetFileTime
GetComputerNameA
DeleteFileW
GetFileSize
FindResourceA
GlobalFree
CopyFileExW
FindResourceW
OpenFileMappingA
FindFirstFileA
ReadFile
CopyFileA
FindNextFileA
ReadConsoleW
DeleteFileW
ExitProcess
FindResourceA
Sleep
WriteFile
AddAtomA
ReadFile
CreateFileA
CloseHandle
ExitProcess
GetStdHandle
CreateDirectoryA
CopyFileExW
CloseHandle
CreateMutexW
ReadConsoleW
GetComputerNameA
GetCPInfo
FindNextVolumeA
CreateFileA
CopyFileW
FindNextFileA
GetComputerNameA
GetStdHandle
GetComputerNameA
CopyFileExW
ReadConsoleW
FindNextVolumeA
OpenFileMappingA
GlobalFree
FindResourceW
Sleep
FindFirstFileA
CloseHandle
CreateDirectoryA
ReadFile
GetFileTime
FindResourceW
CreateDirectoryA
FindResourceA
CopyFileA
CopyFileW
ExitProcess
ReadConsoleW
AddAtomA
WriteFile
CreateMutexW
FindFirstFileA
DeleteFileW
DeleteFileA
GetFileSize
GetStdHandle
DeleteFileA
FindNextFileA
GlobalFree
GetFileSize
CopyFileW
DeleteFileA
FindResourceA
CreateFileA
GlobalFree
CloseHandle
GetFileSize
CreateMutexW
DeleteFileA
CopyFileW
GetStdHandle
ExitProcess
CreateFileA
FindFirstFileA
Sleep
WriteFile
AddAtomA
GetFileTime
DeleteFileW
GlobalFree
GetConsoleMode
ReadFile
FindResourceW
FindNextVolumeA
OpenFileMappingA
GetCPInfo
DeleteFileW
CreateMutexW
GetConsoleMode
GetComputerNameA
OpenFileMappingA
CopyFileA
CreateMutexA
ReadConsoleW
FindNextFileA
FindNextVolumeA
CloseHandle
ReadFile

Sections

.DATA
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.init
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 957B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 4KB - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

faa1a07f32ef368253310fed36f1711d

Headers

File Characteristics

Imports

kernel32

Sections

.DATA Size: 104KB - Virtual size: 102KB

.init Size: 8KB - Virtual size: 4KB

.edata Size: 4KB - Virtual size: 957B

.reloc Size: 8KB - Virtual size: 3.2MB

.bss Size: 4KB - Virtual size: 160B

.rdata Size: 4KB - Virtual size: 2KB

.idata Size: 16KB - Virtual size: 14KB

.rsrc Size: 12KB - Virtual size: 8KB

.DATA
Size: 104KB - Virtual size: 102KB

.init
Size: 8KB - Virtual size: 4KB

.edata
Size: 4KB - Virtual size: 957B

.reloc
Size: 8KB - Virtual size: 3.2MB

.bss
Size: 4KB - Virtual size: 160B

.rdata
Size: 4KB - Virtual size: 2KB

.idata
Size: 16KB - Virtual size: 14KB

.rsrc
Size: 12KB - Virtual size: 8KB