299d33e8a33a1d688fdd1ca09889a81732fb5c8525ca84a22b89fa56db5b5236

General

Target

299d33e8a33a1d688fdd1ca09889a81732fb5c8525ca84a22b89fa56db5b5236
Size

287KB
MD5

746fff25b6676a666d981862a4c531d0
SHA1

0aff5bf6dc76f64644d3290d71968fa5458db9ed
SHA256

299d33e8a33a1d688fdd1ca09889a81732fb5c8525ca84a22b89fa56db5b5236
SHA512

2cd7677a966cfeae69213ceb35dae7a6e96fd57b4a2f268af8c9bf1f8cad7e1c0b87c658c266db5eedd12714d89485baa98d6902242a9300964872bd0c3dbbd4
SSDEEP

6144:Ma4AuCfp9V5SX114QksmH8/cBYiuDD7ncnnfopoKXm4ZcEqfiOiz:MFWflkXQbH8/c2iuDnJrLL4iz

Score

N/A

Malware Config

Signatures

Files

299d33e8a33a1d688fdd1ca09889a81732fb5c8525ca84a22b89fa56db5b5236
.exe windows x86

b50492195f208a7f538d1b58553b26ab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
CreateFileW
GetCommandLineW
LoadLibraryW
GetLocaleInfoW
GetDateFormatW
FindNextFileW
ReadFile
GetLocalTime
MultiByteToWideChar
LocalFree
DeleteFileA
GetStdHandle
GetFileType
GetEnvironmentStringsA
SetLastError
LocalAlloc
FindFirstFileW
GetStartupInfoA
FormatMessageW
GetSystemDefaultLCID
VerifyVersionInfoW
GetFileAttributesW
GetTimeFormatW
CloseHandle
FreeLibrary
WriteConsoleW
GetModuleHandleA

advapi32

InitializeAcl
SetSecurityDescriptorOwner
RegQueryValueExW
SetSecurityDescriptorDacl
AddAccessAllowedAce
TraceMessage
GetSecurityDescriptorOwner
GetTraceEnableLevel
RegOpenKeyExW
InitializeSecurityDescriptor

msvcrt

_adjust_fdiv
free
swprintf
__dllonexit
wcscmp
malloc
_purecall
_initterm
wcslen
wcsncmp
wcscpy
_onexit

iasacct

DllRegisterServer
DllCanUnloadNow
DllUnregisterServer
DllGetClassObject

hnetcfg

HNetGetFirewallSettingsPage
HNetSharingAndFirewallSettingsDlg
HNetGetSharingServicesPage
HNetFreeSharingServicesPage
HNetSharedAccessSettingsDlg
HNetDeleteRasConnection

ws2_32

htonl
htons

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b50492195f208a7f538d1b58553b26ab

Headers

File Characteristics

Imports

kernel32

advapi32

msvcrt

iasacct

hnetcfg

ws2_32

Sections

.text Size: 102KB - Virtual size: 102KB

.rdata Size: 103KB - Virtual size: 102KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 102KB - Virtual size: 102KB

.rdata
Size: 103KB - Virtual size: 102KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 11KB - Virtual size: 10KB