739132b4ed6e513f2a482c5a2d31d6be10ca324bbd699b0ee5f1d247b846fbb5

Sharing

Copy URL Twitter E-mail

General

Target

739132b4ed6e513f2a482c5a2d31d6be10ca324bbd699b0ee5f1d247b846fbb5
Size

200KB
MD5

65973b415428521b173ae8f1025fe8c0
SHA1

cfe67b3c2a56df9ac49573bf0a727ffbdebc6af2
SHA256

739132b4ed6e513f2a482c5a2d31d6be10ca324bbd699b0ee5f1d247b846fbb5
SHA512

3a55c3f3afacc8669ef8d2d1e36cc8cf79957b5f32ca5b3054def24fc998734723478ed69cbb1f98110817345540fc9cd5cf9af2336d55ffd3ec3b2c20b780f2
SSDEEP

3072:OiQ2pQow52LT8vIEzCb/Xe8Yj6/Porp4tvRjw16OBz7wQLkisKvrUArBV:OcpQoZLONCb/OS3apmNzCLLNsKv/B

Score

N/A

Malware Config

Signatures

Files

739132b4ed6e513f2a482c5a2d31d6be10ca324bbd699b0ee5f1d247b846fbb5
.exe windows x86

cd478977bfe5bc9bac4273179e6d5614

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
CreateEventA
WaitForSingleObject
CloseHandle
IsBadReadPtr
HeapAlloc
GetSystemDirectoryA
lstrcatA
IsBadWritePtr
GetProcessHeap
HeapFree
GetLastError
GetVersionExA
lstrcpyA
GetTimeZoneInformation
LoadLibraryA
GetProcAddress
lstrcmpiA
WideCharToMultiByte
FreeLibrary
GetStartupInfoA

user32

wsprintfA

msvcrt

_controlfp
_except_handler3
__setusermatherr
_initterm
__getmainargs
__set_app_type
exit
_cexit
_exit
_c_exit
_stricmp
malloc
strtok
_strnicmp
atol
free
strchr
_ltoa
_XcptFilter
__p__fmode
_acmdln
_adjust_fdiv
__p__commode

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

SysFreeString

advapi32

RegCloseKey
CloseServiceHandle
CreateServiceA
OpenServiceA
OpenSCManagerA
RegSetValueExA
RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA

cfgmgr32

CM_Get_Device_ID_List_SizeA
CM_Disable_DevNode
CM_Open_DevNode_Key
CM_Locate_DevNodeA
CM_Get_Device_ID_ListA
CM_Get_DevNode_Status
CM_Get_DevNode_Registry_PropertyA
CM_Enable_DevNode

setupapi

SetupDiSetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupDiOpenDevRegKey
SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cd478977bfe5bc9bac4273179e6d5614

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

ole32

oleaut32

advapi32

cfgmgr32

setupapi

Sections

.text Size: 8KB - Virtual size: 5KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 512B

.sxdata Size: 4KB - Virtual size: 4B

.rsrc Size: 4KB - Virtual size: 1KB

.rmnet Size: 172KB - Virtual size: 172KB

.text
Size: 8KB - Virtual size: 5KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 512B

.sxdata
Size: 4KB - Virtual size: 4B

.rsrc
Size: 4KB - Virtual size: 1KB

.rmnet
Size: 172KB - Virtual size: 172KB