5d3f1d1a292d132af5b0b60c16795e41b3679c5e68ceaafe17df5ce73277580f

Sharing

Copy URL Twitter E-mail

General

Target

5d3f1d1a292d132af5b0b60c16795e41b3679c5e68ceaafe17df5ce73277580f
Size

636KB
MD5

7cae3d04c6f5d45fe14f03884bbb1ab0
SHA1

be2479036198f8c78dd8974abc7ddeafec8a837d
SHA256

5d3f1d1a292d132af5b0b60c16795e41b3679c5e68ceaafe17df5ce73277580f
SHA512

8c72d099ec1ead1cd876110d38c67e37cfa4e7a1d875419d868af035629397c3427f42bf58f5aef5c873c68bb334c3ec5aae1dbece03b668c125dd5102e38ea9
SSDEEP

12288:uwMcG4VqSrnD1huyo1ov5N0v5Llh87EMi4xDuCZ7A7:u9cXnrDfuy+oP0vqJ9np

Score

N/A

Malware Config

Signatures

Files

5d3f1d1a292d132af5b0b60c16795e41b3679c5e68ceaafe17df5ce73277580f
.dll windows x86

a56c82bc9c144925afa4e1145a6975ed

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Locate_DevNodeW
CM_Open_DevNode_Key_Ex
CM_Delete_DevNode_Key
CM_Test_Range_Available
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsW
SetupDiSelectOEMDrv
CM_Get_Sibling
CM_Add_Empty_Log_Conf_Ex

advapi32

RegCloseKey
RegSetValueExW
RegQueryValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyW
RegCreateKeyExW

kernel32

Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
lstrcmpiW
lstrlenW
GlobalAlloc
CancelWaitableTimer
CloseHandle
CreateEventW
CreateFileW
CreateMutexW
CreateThread
CreateWaitableTimerW
DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
FindResourceW
FreeLibrary
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetExitCodeThread
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetOverlappedResult
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetVersionExA
SetWaitableTimer
GlobalFree
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
LeaveCriticalSection
LoadResource
LocalAlloc
LocalFree
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
RaiseException
ReadFile
ReleaseMutex
ResetEvent
SetEvent
SetUnhandledExceptionFilter

oleaut32

UnRegisterTypeLi
SysStringLen
SysFreeString
SysAllocString
RegisterTypeLi
LoadTypeLi
VarUI4FromStr

ole32

CoCreateInstance
CoInitialize
CoInitializeEx
CoTaskMemAlloc
CoTaskMemRealloc
CoUninitialize
OleCreateFromFile
PropVariantClear

Exports

Exports

Concat
GC_Track
Inittab
Iter_Next
get_copyright
mmx_support
set_shift

Sections

.text
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 252KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a56c82bc9c144925afa4e1145a6975ed

Headers

File Characteristics

Imports

setupapi

advapi32

kernel32

oleaut32

ole32

Exports

Exports

Sections

.text Size: 152KB - Virtual size: 151KB

.rdata Size: 64KB - Virtual size: 62KB

.data Size: 252KB - Virtual size: 252KB

.rsrc Size: 156KB - Virtual size: 155KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 152KB - Virtual size: 151KB

.rdata
Size: 64KB - Virtual size: 62KB

.data
Size: 252KB - Virtual size: 252KB

.rsrc
Size: 156KB - Virtual size: 155KB

.reloc
Size: 8KB - Virtual size: 7KB