105934f4a89736648a87b4f272ecc6abe7cd048378f20e97a20cad3df9a9f10e

General

Target

105934f4a89736648a87b4f272ecc6abe7cd048378f20e97a20cad3df9a9f10e
Size

169KB
MD5

42f24a77792ee2925348207cc0a1e29d
SHA1

9a4e198d3f471bb88cc27c665a38c439d4ca6995
SHA256

105934f4a89736648a87b4f272ecc6abe7cd048378f20e97a20cad3df9a9f10e
SHA512

478b745308eea5f1581368a287d7c71c11081710b2f062511d8b5101a91e32892ecdd7baf7600f94a4154c47d39f9573b330cf5324958cf672e24114d91cd790
SSDEEP

3072:6wse76bngWDm7a2+FtqHwOz+/2l8Qq04wgkmKS4tqb:6ws109oTOC0xvnq

Score

N/A

Malware Config

Signatures

Files

105934f4a89736648a87b4f272ecc6abe7cd048378f20e97a20cad3df9a9f10e
.exe windows x86

202b030408e3b665e652f6e534875f0c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetFileAttributesW
CreateDirectoryW
FindClose
ExitProcess
FindFirstFileW
FindAtomA
GetCommandLineW
CopyFileW
LoadLibraryExW
FindNextFileW
SetThreadPriority
QueryPerformanceCounter
GetDriveTypeW
GetExitCodeThread
GetProcAddress
GetTickCount
GetCurrentProcessId
CreateFileW
EnumResourceLanguagesA
EnterCriticalSection
ReleaseMutex
DeviceIoControl
LoadModule
DeleteFileW
GetModuleHandleA
OpenThread
OutputDebugStringW
LeaveCriticalSection
GetSystemTimeAsFileTime
GetStartupInfoW
ResumeThread
SetPriorityClass
LoadResource
FindResourceW

setupapi

CM_Get_Sibling
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyA
CM_Get_DevNode_Status

advapi32

OpenServiceW
ControlService
RegEnumKeyExW
OpenProcessToken
SetServiceStatus
OpenThreadToken
DeregisterEventSource
RegisterEventSourceW
OpenSCManagerW
DeleteService
ReportEventW
CloseServiceHandle
CreateServiceW

gdi32

DeleteObject

Sections

.text
Size: 90KB - Virtual size: 489KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

202b030408e3b665e652f6e534875f0c

Headers

File Characteristics

Imports

kernel32

setupapi

advapi32

gdi32

Sections

.text Size: 90KB - Virtual size: 489KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 76KB - Virtual size: 75KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 90KB - Virtual size: 489KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 76KB - Virtual size: 75KB

.rsrc
Size: 512B - Virtual size: 4KB