77fd0be7e5182edcce7d872ce4eab4a5fc4562ac9b743c105eedd26fadf4c9ba

Sharing

Copy URL Twitter E-mail

General

Target

77fd0be7e5182edcce7d872ce4eab4a5fc4562ac9b743c105eedd26fadf4c9ba
Size

3.7MB
MD5

db73ef960708b74c528a36e180610d3e
SHA1

3e7c7a80f575b65a3b6a10865cf0b4440d922753
SHA256

77fd0be7e5182edcce7d872ce4eab4a5fc4562ac9b743c105eedd26fadf4c9ba
SHA512

a20b540d9aaa80875052f1de9a61088623cabcbf8135cf91cfc8a4dc5b39b15b6ca5d3b83349c0e9c63738b3bcec2742d8c511c3c58c1e0fe1a9d35b49411a76
SSDEEP

98304:wNDba8eVjcWUvkqApq+fjemkdqs4IBd3ADgwe5qebikTh2qkBRd8uqA0a1J5Jf:wNi8yjcfsXsIX2OvS552q1u+a1B

Score

N/A

Malware Config

Signatures

Files

77fd0be7e5182edcce7d872ce4eab4a5fc4562ac9b743c105eedd26fadf4c9ba
.exe windows x86

44e1faee3b8560ad2d4a1623c2909f77

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingW
GetEnvironmentStrings
GetCommandLineW
OpenEventW
GetThreadLocale
OpenMutexA
FormatMessageA
TlsGetValue
SizeofResource
FlushFileBuffers
GetVersion
UnhandledExceptionFilter
QueryPerformanceCounter
lstrcpynA
GetFileAttributesW
IsBadWritePtr
TlsFree
GetLastError
VirtualAlloc
FindNextFileW
GetCommandLineA
GetDriveTypeA
FindResourceW
GetModuleHandleW
FindResourceA
ReleaseSemaphore
GetComputerNameW
OpenEventA
ResumeThread
GetModuleHandleA
GetStdHandle
Sleep
GetTickCount
SetUnhandledExceptionFilter
GetFileSize
GetExitCodeProcess
GetFileAttributesA
SetLastError
GetDriveTypeW
WriteProfileStringW
LeaveCriticalSection
ExitProcess
DeleteFileA
CreateMutexW
MapViewOfFile
GetCurrentDirectoryW
LocalFree
GetLocaleInfoW
WaitForSingleObject
GetACP
CreateEventA

user32

CheckRadioButton
SetWindowLongA
SetRect
DrawTextA
PostMessageA
CheckMenuItem
RegisterClassExW
UnregisterClassA
CharLowerW
GetWindowLongA
SetWindowPos
CopyRect
GetWindowTextW
LoadStringW
EnableMenuItem
DestroyMenu
ClientToScreen
PeekMessageW
UpdateWindow
RegisterClipboardFormatW
EndDialog
SystemParametersInfoW
GetWindowRect

advapi32

AddAce
RegFlushKey
SetNamedSecurityInfoW
ConvertStringSecurityDescriptorToSecurityDescriptorW
GetUserNameW
SetEntriesInAclW
InitializeAcl
SetThreadToken
GetAce
QueryServiceStatus
RevertToSelf
QueryServiceConfigW
GetSidIdentifierAuthority
LsaQueryInformationPolicy
DeleteService
LookupPrivilegeValueW
CryptAcquireContextA
SetSecurityDescriptorOwner
RegEnumValueA
IsValidSid
RegQueryInfoKeyW
CryptDestroyKey
RegSetValueA
RegOpenKeyA
RegCloseKey
GetTokenInformation
ConvertSidToStringSidW
CryptCreateHash
CloseServiceHandle
CryptHashData
LsaOpenPolicy
RegDeleteKeyW
OpenSCManagerW
SetSecurityDescriptorGroup
RegCreateKeyExA
SetFileSecurityW
ReportEventW
AllocateAndInitializeSid
RegQueryInfoKeyA
DeregisterEventSource
ConvertStringSidToSidW
CryptGenRandom
LsaFreeMemory
RegOpenKeyW
GetSecurityDescriptorOwner
LookupAccountNameW
RegEnumKeyA
RegEnumValueW
UnlockServiceDatabase
GetTraceLoggerHandle

Sections

.text
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbss
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1KB - Virtual size: 3.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 7KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44e1faee3b8560ad2d4a1623c2909f77

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 3.5MB - Virtual size: 3.5MB

DATA Size: 4KB - Virtual size: 4KB

.textbss Size: 7KB - Virtual size: 6KB

.bss Size: 2KB - Virtual size: 1KB

.bss Size: 6KB - Virtual size: 5KB

.bss Size: 1KB - Virtual size: 3.5MB

.bss Size: 4KB - Virtual size: 4KB

.tls Size: 8KB - Virtual size: 7KB

.bss Size: 6KB - Virtual size: 6KB

.tls Size: 7KB - Virtual size: 2.4MB

BSS Size: 3KB - Virtual size: 3KB

.tls Size: - Virtual size: 7KB

.rsrc Size: 98KB - Virtual size: 100KB

.text
Size: 3.5MB - Virtual size: 3.5MB

DATA
Size: 4KB - Virtual size: 4KB

.textbss
Size: 7KB - Virtual size: 6KB

.bss
Size: 2KB - Virtual size: 1KB

.bss
Size: 6KB - Virtual size: 5KB

.bss
Size: 1KB - Virtual size: 3.5MB

.bss
Size: 4KB - Virtual size: 4KB

.tls
Size: 8KB - Virtual size: 7KB

.bss
Size: 6KB - Virtual size: 6KB

.tls
Size: 7KB - Virtual size: 2.4MB

BSS
Size: 3KB - Virtual size: 3KB

.tls
Size: - Virtual size: 7KB

.rsrc
Size: 98KB - Virtual size: 100KB