9a2cdb8af4b09ffeab9f9b2992c23b3636847ad30f8f9f1334254765fa5f01bd

Sharing

Copy URL Twitter E-mail

General

Target

9a2cdb8af4b09ffeab9f9b2992c23b3636847ad30f8f9f1334254765fa5f01bd
Size

204KB
MD5

74a61b174f71e4bf08e14ed2ca7bf452
SHA1

761eddc7fa1d9639a76d1a51533137c9e0f27bf0
SHA256

9a2cdb8af4b09ffeab9f9b2992c23b3636847ad30f8f9f1334254765fa5f01bd
SHA512

590a2882a1d90e14588284323b917d9d0d63e38ca4ca0795b318ed7ca319a6756ac3ae9d2c751554c1ae9dac4003e859d59bd1d0f32886cb1be950439e8d1b08
SSDEEP

3072:aDMkagzBf5VRYN/aYO+fnkdrkxbT+FToqNWL8+srQ0QnkLDQVw6WZbkC/zxgvLGh:IagzZ1Alqrk/qs4vfhDoVWZAC/iDap

Score

N/A

Malware Config

Signatures

Files

9a2cdb8af4b09ffeab9f9b2992c23b3636847ad30f8f9f1334254765fa5f01bd
.exe windows x86

1310c325cb086a9766dddb0d90cca0dd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameW
HeapAlloc
GetVersionExW
lstrlenA
GlobalUnlock
InitializeCriticalSection
GetCurrentProcessId
InterlockedDecrement
lstrlenW
QueryPerformanceCounter
GetThreadPriority
LeaveCriticalSection
SetFilePointer
GetSystemInfo
GetTickCount
lstrcmpW
MulDiv
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualFree
CloseHandle
PostQueuedCompletionStatus
ReleaseSemaphore
CreateSemaphoreW
FreeLibrary
GlobalFree
WaitForSingleObject
HeapFree
InterlockedExchange
CreateIoCompletionPort
GetProfileIntA
lstrcpyA
ReadFile
InterlockedIncrement
GetQueuedCompletionStatus
WaitForMultipleObjects
GetACP
SetEndOfFile
GetDiskFreeSpaceW
GetProcAddress
IsBadCodePtr
GetFileAttributesW
GetCurrentThread
ResetEvent
GetFileSize
CreateFileW
WriteFile
DeleteFileW
SetThreadPriority
SetEvent
lstrcpynW
CreateEventW
GlobalLock
GetLastError
GetModuleFileNameA
CreateThread
IsBadReadPtr
GetSystemDefaultLangID
GetProcessHeap
GetPrivateProfileStringW
EnterCriticalSection
GetCurrentProcess
GetSystemTimeAsFileTime
lstrcmpiW
lstrcpyW
GlobalMemoryStatus
WideCharToMultiByte
DeleteCriticalSection
GlobalAlloc
GlobalHandle
MultiByteToWideChar
GetTimeZoneInformation
LoadLibraryW

user32

CheckRadioButton
GetDesktopWindow
GetDlgItemInt
ShowWindow
CreateDialogParamW
MoveWindow
SetCursor
LoadCursorW
GetWindowRect
SetDlgItemTextW
ReleaseDC
InvalidateRect
EnableWindow
GetClientRect
GetDC
IsWindowVisible
LoadStringW
IsRectEmpty
SetDlgItemInt
CheckDlgButton
IsWindow
PeekMessageW
SetWindowLongW
ClientToScreen
GetWindowLongW
DefWindowProcW
DispatchMessageW
GetAsyncKeyState
SendMessageW
DestroyWindow
TranslateMessage
GetDlgItem

nddeapi

NDdeGetTrustedShareW
NDdeGetShareSecurityA
NDdeGetErrorStringA
NDdeIsValidAppTopicListA
NDdeIsValidShareNameA
NDdeGetTrustedShareA
NDdeGetShareSecurityW
NDdeIsValidAppTopicListW

ole32

CoUninitialize
CoTaskMemAlloc
CoInitialize
CoCreateInstance
CoFreeUnusedLibraries
StringFromGUID2
CoTaskMemFree

ncobjapi

WmiEventSourceDisconnect
WmiCreateObjectWithFormat
WmiAddObjectProp
WmiSetAndCommitObject
WmiCreateObjectWithProps
WmiCreateObject
WmiCommitObject
WmiEventSourceConnect
WmiIsObjectActive
WmiDestroyObject

ifsutil

?AddEdge@DIGRAPH@@QAEEKK@Z
?CheckAndAdd@SPARSE_SET@@QAEEVBIG_INT@@PAE@Z
?AddEntry@AUTOREG@@SGEPBVWSTRING@@@Z
?AddNext@NUMBER_SET@@QAEEVBIG_INT@@@Z
?CheckAndAdd@NUMBER_SET@@QAEEVBIG_INT@@PAE@Z
?AddVolumeName@MOUNT_POINT_MAP@@QAEEPAVWSTRING@@0@Z
?CheckAndRemove@NUMBER_SET@@QAEEVBIG_INT@@PAE@Z
?AddStart@NUMBER_SET@@QAEEVBIG_INT@@@Z

Sections

.text
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1310c325cb086a9766dddb0d90cca0dd

Headers

File Characteristics

Imports

kernel32

user32

nddeapi

ole32

ncobjapi

ifsutil

Sections

.text Size: 78KB - Virtual size: 78KB

.rdata Size: 59KB - Virtual size: 58KB

.data Size: 62KB - Virtual size: 2.1MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 78KB - Virtual size: 78KB

.rdata
Size: 59KB - Virtual size: 58KB

.data
Size: 62KB - Virtual size: 2.1MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB