a62c2dc5274440112ee10786ef79bb5f510150b37c334468031baa987e076d76

General

Target

a62c2dc5274440112ee10786ef79bb5f510150b37c334468031baa987e076d76
Size

274KB
MD5

6c0fd99f849c6de6fe15960c9887edf0
SHA1

6b482f4f5514f13421961d94815e7eb6da00b9f5
SHA256

a62c2dc5274440112ee10786ef79bb5f510150b37c334468031baa987e076d76
SHA512

8727eef02c71a16dbc5c1ee787e2f6e4d7f3c81d37af4df110b18e7dd00eee0157a7e9ad07bf0fa0e99c9a2d5f0d59bd7f47a06e88605c42728fd3faae3affa4
SSDEEP

6144:zJbxcH4e540YE7S30mRMzQeYquywLRQqdd2fl/xXgm8DLy33:dG14HuSko6Q2ubqX98DLW3

Score

N/A

Malware Config

Signatures

Files

a62c2dc5274440112ee10786ef79bb5f510150b37c334468031baa987e076d76
.exe windows x86

47e087296067aaef5d13790476497bc9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
GlobalFindAtomA
CreateDirectoryA
InterlockedDecrement
ReleaseMutex
FindFirstFileA
GetLastError
lstrcpyA
CreateSemaphoreA
MapViewOfFile
CreateThread
ResetEvent
LCMapStringW
lstrcmpA
RemoveDirectoryA
EnterCriticalSection
SetEndOfFile
GetExitCodeThread
SetFilePointer
GetProcAddress
GlobalFree
GlobalAlloc
UnmapViewOfFile
GetFileAttributesA
SleepEx
GetModuleFileNameA
GetDiskFreeSpaceA
DeleteCriticalSection
SetEvent
CloseHandle
LoadLibraryW
GetFileSize
CompareStringW
OpenEventA
WaitForSingleObjectEx
OpenSemaphoreA
ReadFileEx
WaitForSingleObject
lstrlenA
CreateEventA
SetThreadPriority
GetCurrentProcessId
OpenFileMappingA
WriteFile
WriteFileEx
ReleaseSemaphore
CreateMutexA
VirtualFree
LocalAlloc
LeaveCriticalSection
GetUserDefaultLangID
ExpandEnvironmentStringsA
GetModuleHandleA
ReadFile
CreateFileA
FreeLibrary
GetTickCount
GetSystemInfo
FindNextFileA
WaitForMultipleObjects
InterlockedIncrement
OpenMutexA

msvcrt

_stricmp
strncmp
_iob
_fullpath
fopen
vprintf
_ftol
memmove
_itoa
fflush
fprintf
_makepath
isprint
wcslen
printf
strncpy
toupper
_splitpath
sprintf
fclose
_strupr
_strnicmp
rand

advapi32

RegQueryValueExA
ReportEventA
RegCloseKey
DeregisterEventSource
SetSecurityDescriptorDacl
RegDeleteValueA
RegisterEventSourceA
GetLengthSid
AllocateAndInitializeSid
RegDeleteKeyA
RegSetValueExA
InitializeAcl
RegCreateKeyExA
RegOpenKeyExA
FreeSid

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47e087296067aaef5d13790476497bc9

Headers

File Characteristics

Imports

kernel32

msvcrt

advapi32

Sections

.text Size: 136KB - Virtual size: 136KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 73KB - Virtual size: 72KB

.rsrc Size: 55KB - Virtual size: 54KB

.text
Size: 136KB - Virtual size: 136KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 73KB - Virtual size: 72KB

.rsrc
Size: 55KB - Virtual size: 54KB