be107436aefeb709cacda68f85568afb961b48100daa443bf1fca33639a4865c

Sharing

Copy URL

Twitter E-mail

General

Target

be107436aefeb709cacda68f85568afb961b48100daa443bf1fca33639a4865c
Size

61KB
MD5

6d33a3e9c6f210fdad707ad426b384ed
SHA1

62cf4e103b5b6d0dfa274d3575462daf5ae95645
SHA256

be107436aefeb709cacda68f85568afb961b48100daa443bf1fca33639a4865c
SHA512

2cade6ae340eb62045c19b534e9338d42421365e50f919bfe76ec47be35c4126bd6c1fda6d9b0237429dab970dfc95079a121b3b17f6981cce53f403a35e6408
SSDEEP

768:G73b/AkarcKB+e5qGq6zfC8mp+9ROlJtDXvYLIS2BUzDZ2ztELn5ZgPmCIFAX4DF:GvUvqGqESGNp2uL7gP1IFfrZ+IvXx

Score

N/A

Malware Config

Signatures

Files

be107436aefeb709cacda68f85568afb961b48100daa443bf1fca33639a4865c
.exe windows x86

34b34b272ca545651fbaaf191f946c58

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GlobalAlloc
SetFileAttributesA
lstrcpynA
FindFirstFileA
lstrlenA
GetPrivateProfileStringA
Sleep
DeleteFileA
GetShortPathNameA
MoveFileExA
FindNextFileA
CreateFileMappingA
CreateFileA
GetFileSize
CloseHandle
MapViewOfFile
UnmapViewOfFile
GetWindowsDirectoryA
SetFilePointer
SetEndOfFile
lstrcpyA
GetSystemDirectoryA
CreateDirectoryA
FindClose
RemoveDirectoryA
GetVersionExA
TerminateProcess
ExitProcess
GetStringTypeW
GetCurrentProcess
lstrcatA
HeapFree
MultiByteToWideChar
GetProcAddress
WriteFile
LoadLibraryA
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
GetEnvironmentStringsW
GetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
GetLastError
GetFileAttributesA
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
GetStringTypeA
FreeEnvironmentStringsW
GetEnvironmentStrings
RtlUnwind
WideCharToMultiByte
LCMapStringA
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA

user32

SendMessageA
MessageBoxA
ExitWindowsEx
wsprintfA
LoadStringA
LoadIconA
FindWindowA

advapi32

FreeSid
EqualSid
CloseServiceHandle
RegEnumKeyExA
DeleteService
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
OpenProcessToken
RegDeleteValueA
AdjustTokenPrivileges
ControlService
LookupPrivilegeValueA
OpenSCManagerA
AllocateAndInitializeSid
OpenServiceA
RegSetValueExA
RegOpenKeyA
GetTokenInformation

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiOpenDevRegKey
SetupDiCallClassInstaller
SetupDiDeleteDeviceInfo

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 831B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

34b34b272ca545651fbaaf191f946c58

Headers

File Characteristics

Imports

kernel32

user32

advapi32

setupapi

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 1024B - Virtual size: 831B

.data Size: 14KB - Virtual size: 20KB

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 14KB - Virtual size: 16KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 1024B - Virtual size: 831B

.data
Size: 14KB - Virtual size: 20KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 14KB - Virtual size: 16KB