cf7d2a5bfd393b8088f68b0da3145a568e7bfdb2c1c1261b6df72e8bd5ac7304

General

Target

cf7d2a5bfd393b8088f68b0da3145a568e7bfdb2c1c1261b6df72e8bd5ac7304
Size

223KB
MD5

2bcae317d323123109512861ade12e9b
SHA1

4a7c42d14951f593943280f29b3618e5056de4be
SHA256

cf7d2a5bfd393b8088f68b0da3145a568e7bfdb2c1c1261b6df72e8bd5ac7304
SHA512

5029407e3c3fbcb79fb408a3a82b4b9024810bc1cd214221b42942becf9b09820d66fc9c5bb4e763bb5d3d37ca95e31bcbf6d9f2f35107c970dd39e38d56a2b2
SSDEEP

6144:0bazxyuD5IRXUYCwqfDloULDrMgPxD22kV:0GDuRiwZe3L2x

Score

N/A

Malware Config

Signatures

Files

cf7d2a5bfd393b8088f68b0da3145a568e7bfdb2c1c1261b6df72e8bd5ac7304
.exe windows x86

e4537bf087528f0262635834d419b989

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
SetFilePointer
DeleteCriticalSection
lstrcmpiW
GetOEMCP
FindNextFileA
TlsFree
TlsGetValue
HeapSize
GetLocaleInfoA
FreeEnvironmentStringsW
Sleep
GetFullPathNameW
InitializeCriticalSectionAndSpinCount
GetACP
SetUnhandledExceptionFilter
InitializeCriticalSection
GetPrivateProfileStringW
GetCommandLineA
lstrlenW
EnterCriticalSection
LCMapStringA
GetCurrentProcess
QueryPerformanceCounter
FreeLibrary
IsDebuggerPresent
LocalFree
FileTimeToLocalFileTime
SetStdHandle
SetConsoleCP
ReadFile
WideCharToMultiByte
FindClose
HeapDestroy
GetCurrentProcessId
LoadLibraryW
HeapAlloc
CloseHandle
CreateFileW
GetLastError
GlobalReAlloc
VirtualProtect
ExitProcess
OutputDebugStringA
GetComputerNameW
GetLocaleInfoW
GetModuleHandleA
EndUpdateResourceA
FileTimeToSystemTime
GetStartupInfoA
InterlockedIncrement

user32

SetWindowPos
GetForegroundWindow
PostMessageW
TranslateMessage
ShowWindow
LoadStringA
UnregisterClassA
SystemParametersInfoW
GetNextDlgTabItem
SetTimer
GetPropW
SetCursor

msvcrt

_vsnwprintf
memmove
?terminate@@YAXXZ
_wcsicmp
_amsg_exit
_vsnprintf
wcsrchr
wcstol

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 177KB - Virtual size: 386KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4537bf087528f0262635834d419b989

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 40KB - Virtual size: 39KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 177KB - Virtual size: 386KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 177KB - Virtual size: 386KB

.rsrc
Size: 3KB - Virtual size: 2KB