a9b97507aa7625324466718b0a97393c58d738eb4231315aef0e82f3a31dff34

General

Target

a9b97507aa7625324466718b0a97393c58d738eb4231315aef0e82f3a31dff34
Size

84KB
MD5

718e80e686942458314a900f20218507
SHA1

eca8089530ec08904bb1cc6746a6cef173cf0f6f
SHA256

a9b97507aa7625324466718b0a97393c58d738eb4231315aef0e82f3a31dff34
SHA512

2a2b317c7aad733572f7d1f401245ee7d185dfd17ca60d50e3a44267f1bdc1a0661d220b447f62560920a210b5cc0ea7bb334e8f966741db2b26155f387c959b
SSDEEP

1536:OsxOMZ+W0b/9kiQPh3NllqYZPXaFamx9KjReyGtTpawlZehuR9fdISBlC2DJ:OkZ+W0b/9k5hNyev9ReyGXZFfnlF

Score

N/A

Malware Config

Signatures

Files

a9b97507aa7625324466718b0a97393c58d738eb4231315aef0e82f3a31dff34
.exe windows x86

65796f553851cf9c2451070bcaf24262

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupCopyOEMInfW

kernel32

GetProcessHeap
lstrlenW
GetCommandLineW
ExitProcess
FreeLibrary
GetProcAddress
LoadLibraryW
HeapAlloc
ExpandEnvironmentStringsW
FindClose
FindNextFileW
lstrcmpW
GetPrivateProfileStringW
lstrcatW
FindFirstFileW
lstrcmpiW
GetLastError
lstrcpyW
GetCurrentThreadId
CreateThread
WaitForSingleObject
CloseHandle
HeapFree
Sleep
DeleteFileW

user32

wsprintfA
wsprintfW
EnumThreadWindows
GetWindowLongW
BringWindowToTop
IsWindow
GetForegroundWindow
SetForegroundWindow
SendMessageTimeoutW
GetWindowThreadProcessId
AttachThreadInput

advapi32

DeleteService
OpenServiceW
RegSetValueExW
RegCreateKeyExW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
OpenSCManagerW
RegCloseKey

ole32

CoCreateInstance
CoInitializeEx
CoUninitialize

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

65796f553851cf9c2451070bcaf24262

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

kernel32

user32

advapi32

ole32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 2KB

.rsrc Size: 69KB - Virtual size: 72KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 2KB

.rsrc
Size: 69KB - Virtual size: 72KB