2bef9fc2a00d8740ebd288c8ceb3ab5530984a44a921a2a5ad122cc5c5e1b097

Sharing

Copy URL Twitter E-mail

General

Target

2bef9fc2a00d8740ebd288c8ceb3ab5530984a44a921a2a5ad122cc5c5e1b097
Size

2.7MB
MD5

5a004b118803bd3df41eb20035dc6e21
SHA1

2f4db536e8983d78cf78f7c30131ea30c807c104
SHA256

2bef9fc2a00d8740ebd288c8ceb3ab5530984a44a921a2a5ad122cc5c5e1b097
SHA512

5861968d7d8fd4c019fe7695d8c9a0bf5d3b02a6e8c43740d6f285de3319e6e3135f2e5c854ab23140d780515abe8d804731d08b4cc5cd4aca5bf810832d56d6
SSDEEP

49152:SsfC+gje3bYfMHXb4gcWGtrxssgZjXNQqDi8H4x1g5dkG/UumyGbNsIjlcooa89X:SsfCXjvfsb4gcWGtrxsZjQqu841g59c+

Score

1^/10

Malware Config

Signatures

Files

2bef9fc2a00d8740ebd288c8ceb3ab5530984a44a921a2a5ad122cc5c5e1b097
.exe windows x64

c4f804e8b7108cff6cc23fe6bb252f6e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

clientregister100

?IsOutOfDate@@YA_NAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_NH@Z

zzsafenetex

?zzSFNTsntlInitialize@@YAGPEAX@Z

vswebserver100

?zzPostLockIntiState@@YA_NHHAEAV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@@Z

mfc100

ord11125

msvcr100

__set_app_type

kernel32

GetPrivateProfileStringA

user32

GetDC

gdi32

CreateRectRgn

advapi32

RegCloseKey

shell32

ShellExecuteExA

oleaut32

SysAllocString

msvcp100

?_Xlength_error@std@@YAXPEBD@Z

gdiplus

GdipCreatePath

ws2_32

WSAStartup

iphlpapi

GetInterfaceInfo

msvcrt

_wcsnicmp

psapi

GetMappedFileNameW

Sections

.text
Size: 939KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c4f804e8b7108cff6cc23fe6bb252f6e

Headers

DLL Characteristics

File Characteristics

Imports

clientregister100

zzsafenetex

vswebserver100

mfc100

msvcr100

kernel32

user32

gdi32

advapi32

shell32

oleaut32

msvcp100

gdiplus

ws2_32

iphlpapi

msvcrt

psapi

Sections

.text Size: 939KB - Virtual size: 2.5MB

.sedata Size: 1.8MB - Virtual size: 1.8MB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 11KB - Virtual size: 12KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 939KB - Virtual size: 2.5MB

.sedata
Size: 1.8MB - Virtual size: 1.8MB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 11KB - Virtual size: 12KB

.sedata
Size: 4KB - Virtual size: 4KB