55d9ec01417de12f638c614bd0712b1299831aef2ac9f5dcbd8b837c3e80e815

Sharing

Copy URL Twitter E-mail

General

Target

55d9ec01417de12f638c614bd0712b1299831aef2ac9f5dcbd8b837c3e80e815
Size

178KB
MD5

657f84f6588c66afcb4e507cd0727b60
SHA1

04826f710bc61dabf19f7481d70b962eed39e81c
SHA256

55d9ec01417de12f638c614bd0712b1299831aef2ac9f5dcbd8b837c3e80e815
SHA512

12da5b810b765eb2969ac819bdc90afed88014a881fd121e06cb20ac2ca4fa79649e440dc6d05f02490a122030c2cfb427e7dc8554620c2187d8b1bec03f8b22
SSDEEP

3072:oMwhW/CUjD3hJ9OQ/wUPQTM/KfcD4cVgCx5jWUlCMiXspu:btHnPwa7BD4cVn9nicpu

Score

N/A

Malware Config

Signatures

Files

55d9ec01417de12f638c614bd0712b1299831aef2ac9f5dcbd8b837c3e80e815
.exe windows x86

e29f573e3e12e5f9ae2f79d3c47cfa6b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
DeleteCriticalSection
FindResourceExW
LeaveCriticalSection
FindResourceW
LockResource
EnterCriticalSection
LoadResource
GetModuleFileNameW
WideCharToMultiByte
CreateEventW
WaitForSingleObject
SetEvent
SizeofResource
InitializeCriticalSectionAndSpinCount
FreeLibrary
LoadLibraryW
GetProcAddress
GetLastError
FlushFileBuffers
CloseHandle
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
RtlUnwind
LoadLibraryA
GetConsoleMode
GetFileAttributesW
GetCommandLineW
HeapFree
HeapAlloc
GetCommandLineA
GetVersionExA
GetProcessHeap
GetStartupInfoA
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
HeapSize
ExitProcess
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
WriteFile
GetStdHandle
GetModuleFileNameA
RaiseException
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetFilePointer
GetConsoleCP

advapi32

RegSetValueExW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegQueryValueExW

shell32

CommandLineToArgvW

ole32

CoCreateGuid

setupapi

SetupDiCallClassInstaller
SetupDiEnumDeviceInfo
SetupDiSetClassInstallParamsW
SetupDiGetDeviceInstallParamsW
SetupDiGetDeviceInstanceIdW
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList

shlwapi

PathFileExistsW
StrStrIA
PathRemoveFileSpecW

iphlpapi

GetAdaptersInfo

user32

UnregisterClassA

Sections

.text
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e29f573e3e12e5f9ae2f79d3c47cfa6b

Headers

File Characteristics

Imports

kernel32

advapi32

shell32

ole32

setupapi

shlwapi

iphlpapi

user32

Sections

.text Size: 64KB - Virtual size: 61KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 80KB - Virtual size: 80KB

.text
Size: 64KB - Virtual size: 61KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 80KB - Virtual size: 80KB