885e2f6f27b7f8d384d4cfe5036fa653d07e426e84063c7dff12418826da7f48

Sharing

Copy URL Twitter E-mail

General

Target

885e2f6f27b7f8d384d4cfe5036fa653d07e426e84063c7dff12418826da7f48
Size

210KB
MD5

6f816ca2bc6e7c51b7b5a838c4768728
SHA1

b761d750616f31f62b064aff93555dfc13b19c0c
SHA256

885e2f6f27b7f8d384d4cfe5036fa653d07e426e84063c7dff12418826da7f48
SHA512

6faed8494a4c5787271db5237aa7259546376feb02810447426424c22ec96a8ab6a99a0230a267d02411ddb56d8d72825b558a15c439e1ef9f42ee946b77399f
SSDEEP

6144:Al/Lcb4VDYh7xXl64ajCuk6YEmm20x1mBkPhTOey0owK:M/M4pU7xE4SCuk6YEI0x1mBkPxrK

Score

N/A

Malware Config

Signatures

Files

885e2f6f27b7f8d384d4cfe5036fa653d07e426e84063c7dff12418826da7f48
.exe windows x86

376feacfd33edfe0c284f3b4e459a7bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
OpenFile
LeaveCriticalSection
HeapFree
GetProcessHeap
EnterCriticalSection
lstrcpynA
HeapAlloc
lstrcmpiA
lstrlenA
GetCurrentProcess
InitializeCriticalSection
ReleaseMutex
WaitForSingleObject
InterlockedExchange
CreateMutexA
SetConsoleCtrlHandler
ExitProcess
TerminateProcess
GetCommandLineA
UnhandledExceptionFilter
WideCharToMultiByte
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
WriteFile
SetVolumeLabelA
_lclose
MultiByteToWideChar
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FlushFileBuffers
SetFilePointer
GetTimeZoneInformation
LCMapStringW
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
RtlUnwind
CompareStringA
CompareStringW
SetEnvironmentVariableA
ReadFile
SetStdHandle
GetProcAddress
LoadLibraryA
HeapReAlloc
SetEndOfFile
FindClose
FindFirstFileA
FindNextFileA
FileTimeToLocalFileTime
GetFullPathNameA
GetVolumeInformationA
SetFileAttributesA
CreateFileA
GetLastError
GetVersion
SetFileTime
CloseHandle
GetStringTypeA
GetStringTypeW
LCMapStringA
SetConsoleMode
GetConsoleMode
DeleteFileA
GetFileAttributesA
FileTimeToSystemTime
ReadConsoleInputA
GetCurrentDirectoryA
CreateDirectoryA

advapi32

GetSecurityDescriptorControl
OpenProcessToken
AdjustTokenPrivileges
GetKernelObjectSecurity
LookupPrivilegeValueA
IsValidSecurityDescriptor
GetSecurityDescriptorDacl
SetKernelObjectSecurity
GetSecurityDescriptorSacl
GetSecurityDescriptorOwner
IsValidAcl
GetSecurityDescriptorGroup
GetSecurityDescriptorLength
IsValidSid

user32

OemToCharA
CharToOemA

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 71KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

376feacfd33edfe0c284f3b4e459a7bb

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 103KB - Virtual size: 102KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 30KB - Virtual size: 86KB

.idata Size: 71KB - Virtual size: 72KB

.text
Size: 103KB - Virtual size: 102KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 30KB - Virtual size: 86KB

.idata
Size: 71KB - Virtual size: 72KB