caf9df95cca09f0feff0001919f00949f16682ca4a3c9f41a89c49b7339f4b92

General

Target

caf9df95cca09f0feff0001919f00949f16682ca4a3c9f41a89c49b7339f4b92
Size

3.0MB
MD5

2d68e97277190bf1ae908c66be8de5f7
SHA1

6eb69bd58a73d90dbdaeb6d39d57daa33c7a2243
SHA256

caf9df95cca09f0feff0001919f00949f16682ca4a3c9f41a89c49b7339f4b92
SHA512

9898cdeac7874d3784a72b068d48757236cfc181132900cfe94db5986b61525f9a4c185c89c4ef2840d2417585d12267267912cf93b365f8c1bb9a7fa320e3be
SSDEEP

98304:ktjtztqt3tztqt8tztqthtztqt9tztqt:6RBsdBsCBs7Bs/Bs

Score

N/A

Malware Config

Signatures

Files

caf9df95cca09f0feff0001919f00949f16682ca4a3c9f41a89c49b7339f4b92
.exe windows x86

b434c5b990ca677c0747f029a223b8c4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
GetProcAddress
LoadLibraryExW
ExitProcess
OpenEventA
WaitForSingleObject
WinExec
VirtualAllocEx
SleepEx
LoadLibraryA
GetModuleFileNameA
GetModuleHandleA
CreateFileA
EnumTimeFormatsW
NlsGetCacheUpdateCount
FillConsoleOutputAttribute
SetConsoleActiveScreenBuffer
PulseEvent
CommConfigDialogW
QueryMemoryResourceNotification
SizeofResource
FatalAppExitA
VerifyVersionInfoA
MoveFileW
SetMessageWaitingIndicator
LoadLibraryExA
LockFile
GetCurrencyFormatA
ReadConsoleInputExW
VerLanguageNameA
lstrcatA
LZOpenFileW
SetConsoleFont
IsBadStringPtrA
FindActCtxSectionGuid
ResumeThread
WriteConsoleInputVDMW
CopyFileA
LocalUnlock
GetTapeStatus
CreateSemaphoreA
GlobalSize
CreateNamedPipeW
GetShortPathNameW
HeapCreate
EnumerateLocalComputerNamesA
lstrcpynW
PeekConsoleInputA
GetNumberOfConsoleFonts
DeleteAtom
GetNumberOfConsoleInputEvents
AssignProcessToJobObject
EnumCalendarInfoA
LZCreateFileW
DefineDosDeviceW
CompareFileTime
GetConsoleInputExeNameA
GetPrivateProfileSectionNamesA
PrivCopyFileExW
InterlockedExchangeAdd
GetConsoleCommandHistoryLengthA
EnumResourceNamesA
VerLanguageNameW
ReadConsoleInputW
LocalHandle
GetModuleFileNameW
FindFirstFileW
FindFirstChangeNotificationA
WTSGetActiveConsoleSessionId
GetFileInformationByHandle
LocalShrink
SignalObjectAndWait
lstrcpynA
IsDebuggerPresent
UnregisterConsoleIME
GetEnvironmentStringsA
QueryPerformanceFrequency
CreateJobObjectA
GetFullPathNameA
DeleteFileW
GetCommConfig
OpenWaitableTimerA
GetCurrentDirectoryW
GetTempPathA
GetSystemWindowsDirectoryA
FindFirstVolumeW
WriteConsoleA
SetConsoleDisplayMode
LoadLibraryW
GetVDMCurrentDirectories
SetConsoleInputExeNameW
MulDiv
GetTempPathW
lstrlenA
CreateRemoteThread
SearchPathA
CreateWaitableTimerA
GlobalHandle
GetUserDefaultLangID
GetNumberOfConsoleMouseButtons
LZOpenFileA
SetThreadPriorityBoost
CreateIoCompletionPort
EnumTimeFormatsA
MoveFileExA
EnumDateFormatsW
GetExpandedNameW
WritePrivateProfileStringW
CreateActCtxA
AddRefActCtx
BuildCommDCBW
GetModuleHandleExW
SetFirmwareEnvironmentVariableA
FindNextVolumeMountPointA
SetProcessPriorityBoost
IsSystemResumeAutomatic
SetTermsrvAppInstallMode
VirtualAlloc
Process32FirstW
EnumCalendarInfoExW
GetStringTypeW
SetLocaleInfoA
CancelDeviceWakeupRequest
CreateMemoryResourceNotification
GetVolumePathNameA
UTRegister
ReadConsoleInputA
SetLocalPrimaryComputerNameW
GetLocalTime
GetProcessShutdownParameters
UTUnRegister
GetTempFileNameA
LZDone
SetEnvironmentVariableA
GetDllDirectoryA
RegisterWowBaseHandlers
ScrollConsoleScreenBufferA
GlobalMemoryStatusEx
SetTimeZoneInformation
WritePrivateProfileStructA
GetSystemDirectoryW

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b434c5b990ca677c0747f029a223b8c4

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 132KB - Virtual size: 131KB

.text
Size: 132KB - Virtual size: 131KB