dfc36d52a5d7bd9edfa69f71a68d82c88cb5807a921c0f3728f76b31ed404e45

Sharing

Copy URL

Twitter E-mail

General

Target

dfc36d52a5d7bd9edfa69f71a68d82c88cb5807a921c0f3728f76b31ed404e45
Size

352KB
MD5

5838fdd9a6d593e38d858fb0b4dc198b
SHA1

214ffb0080ff13a439d7a73ca1944677159cdf11
SHA256

dfc36d52a5d7bd9edfa69f71a68d82c88cb5807a921c0f3728f76b31ed404e45
SHA512

079d141b63e2d793bc052c600e6b9626a1bf0f2c28b384abf30ea327d01680144246522fe9cf03057f6662ed87ce38f814d872acda65d8b3b769d7204355d6fb
SSDEEP

6144:srJAwRL+2aH2X+lmJD5qkLHfDHZ1h6KflZd/R06DXizGxginT1QexmrO8a4n5j:s1RhU8AmtRbD7hdJZUzKfYa45j

Score

N/A

Malware Config

Signatures

Files

dfc36d52a5d7bd9edfa69f71a68d82c88cb5807a921c0f3728f76b31ed404e45
.exe windows x86

f108f44986fafcba483c02efdda73446

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ntdll

RtlUnwind
NtPowerInformation
NtInitiatePowerAction

msvcrt

_initterm
free
malloc
_adjust_fdiv

user32

wsprintfW
wvsprintfA

kernel32

CreateSemaphoreW
GetCurrentThreadId
GetModuleHandleA
GetSystemTimeAsFileTime
GetTickCount
WaitForSingleObject
GetCurrentThread
GetLastError
GetCurrentProcess
ExitProcess
OpenSemaphoreW
OutputDebugStringA
ReleaseSemaphore
lstrlenW
LoadLibraryA
GetCurrentProcessId
SetLastError
GetProcAddress
InterlockedCompareExchange
QueryPerformanceCounter
LocalFree
LocalAlloc
SetUnhandledExceptionFilter
DisableThreadLibraryCalls
CloseHandle

advapi32

RegCreateKeyExW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyW
RegEnumKeyExW
RegOpenCurrentUser
RegCloseKey
RegOpenKeyExW
RegSetValueExW

Sections

.text
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.DATA
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f108f44986fafcba483c02efdda73446

Headers

File Characteristics

Imports

ntdll

msvcrt

user32

kernel32

advapi32

Sections

.text Size: 74KB - Virtual size: 76KB

.DATA Size: 148KB - Virtual size: 147KB

.rdata Size: 115KB - Virtual size: 115KB

.bss Size: - Virtual size: 12KB

.idata Size: 1KB - Virtual size: 1KB

.crt Size: 512B - Virtual size: 54B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 74KB - Virtual size: 76KB

.DATA
Size: 148KB - Virtual size: 147KB

.rdata
Size: 115KB - Virtual size: 115KB

.bss
Size: - Virtual size: 12KB

.idata
Size: 1KB - Virtual size: 1KB

.crt
Size: 512B - Virtual size: 54B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 11KB - Virtual size: 10KB