ca6f03a9dd015b3cb7e7abbc1f8905d14b30a1bc2232456b6792f25350b5b480

Sharing

Copy URL

Twitter E-mail

General

Target

ca6f03a9dd015b3cb7e7abbc1f8905d14b30a1bc2232456b6792f25350b5b480
Size

464KB
MD5

6e7d5c713d32738811b29281178cbda0
SHA1

2d9192b8c39a7ccb79e0dc2f58d9feb281f5dc4c
SHA256

ca6f03a9dd015b3cb7e7abbc1f8905d14b30a1bc2232456b6792f25350b5b480
SHA512

33979832cf8af227c30ba3eac0337d3b4f8257e5e7b23fe5f2419538d57f46d808db6fc83f5f21db79cf1995b41a6f2607ff270ff722301c6dd8da73ecfdf244
SSDEEP

6144:blKEMIjQHjRcNDxg9xdySMpXCQB8OnYszniKh/fnE9xwQsWt8s4Q5aGzTka17+tN:BKPRcNtg9xXu/lM98OTd2PMIF

Score

N/A

Malware Config

Signatures

Files

ca6f03a9dd015b3cb7e7abbc1f8905d14b30a1bc2232456b6792f25350b5b480
.exe windows x86

7859fdcb393505ad65b2067b35a5171f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceExW
HeapFree
Sleep
MultiByteToWideChar
FindResourceW
CreateFileW
WideCharToMultiByte
QueryPerformanceFrequency
SetFileTime
GetTickCount
lstrlenW
lstrlenA
EnterCriticalSection
SizeofResource
InitializeCriticalSection
LoadResource
DeleteCriticalSection
GetTempFileNameA
CreateProcessW
GetWindowsDirectoryW
FormatMessageW
CreateToolhelp32Snapshot
ReadFile
GetSystemDirectoryA
GetFileTime
Process32FirstW
GetFileSize
GetModuleFileNameA
GetVersionExA
GetTempPathA
Process32NextW
SetErrorMode
CreateProcessA
GetExitCodeThread
CreateThread
CreateEventW
TerminateThread
SetEvent
GetModuleFileNameW
WaitForMultipleObjects
QueryPerformanceCounter
GetCurrentProcessId
WriteFile
LocalFree
GetLastError
LockResource
GetSystemInfo
LeaveCriticalSection
HeapAlloc
GetCurrentThreadId
WaitForSingleObject
SetProcessAffinityMask
CloseHandle
GetProcessHeap
HeapReAlloc
GetPriorityClass
GetVolumeInformationA
GetCurrentProcess
SetStdHandle
SetEndOfFile
SetEnvironmentVariableW
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetConsoleMode
GetConsoleCP
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CreateFileA
GetExitCodeProcess
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LoadLibraryA
FlushFileBuffers
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
RaiseException
HeapDestroy
HeapSize
InterlockedIncrement
InterlockedDecrement
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualProtect
VirtualAlloc
GetProcAddress
GetModuleHandleA
VirtualQuery
GetSystemTimeAsFileTime
DeleteFileW
GetLocalTime
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
LCMapStringA
LCMapStringW
GetCPInfo
GetStringTypeA
GetStringTypeW
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapCreate
VirtualFree
GetFileAttributesA
GetFileAttributesW
GetStdHandle
SetHandleCount
GetFileType
SetFilePointer

advapi32

QueryServiceStatusEx
OpenSCManagerW
CloseServiceHandle
CreateServiceW
ChangeServiceConfig2W
StartServiceW
RegisterServiceCtrlHandlerW
SetServiceStatus
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW
StartServiceCtrlDispatcherW

ole32

CLSIDFromProgID
CoCreateInstance
CoInitialize
CoUninitialize
StringFromCLSID

ws2_32

WSACleanup
getaddrinfo
WSAGetOverlappedResult
freeaddrinfo
WSASetLastError
gethostbyname
WSASocketW
WSACreateEvent
closesocket
WSAEventSelect
WSAGetLastError
WSARecv
WSAResetEvent
WSASend
WSAConnect
WSAEnumNetworkEvents
WSACloseEvent
WSASetEvent
WSAStartup

user32

UnregisterClassA

Sections

.text
Size: 372KB - Virtual size: 370KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7859fdcb393505ad65b2067b35a5171f

Headers

File Characteristics

Imports

kernel32

advapi32

ole32

ws2_32

user32

Sections

.text Size: 372KB - Virtual size: 370KB

.rdata Size: 76KB - Virtual size: 73KB

.data Size: 8KB - Virtual size: 15KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 372KB - Virtual size: 370KB

.rdata
Size: 76KB - Virtual size: 73KB

.data
Size: 8KB - Virtual size: 15KB

.rsrc
Size: 4KB - Virtual size: 1KB