81868fa1a24d3222fc0a01b5a2e1632fb6dc72fad1b32a64cea53483ed763147

Sharing

Copy URL

Twitter E-mail

General

Target

81868fa1a24d3222fc0a01b5a2e1632fb6dc72fad1b32a64cea53483ed763147
Size

146KB
MD5

63717ecdb933ff962726cd0e69ad0982
SHA1

b94f7c0cb4e003f96730edfed1f8efe1a1a86e42
SHA256

81868fa1a24d3222fc0a01b5a2e1632fb6dc72fad1b32a64cea53483ed763147
SHA512

5f010bb958974666ad6d7b44032521d15dcebb737de11fc7d10d516239c5b3eab10b063dc96529119557aba2c71521ca41688a8bf52c6c8389c6b2fde06de8e9
SSDEEP

3072:httttttttttttttjxttttttDL/AwS5Nm4rgKZP6Qtw8ti40FrTsbuT:VhdeN3lJPifsKT

Score

N/A

Malware Config

Signatures

Files

81868fa1a24d3222fc0a01b5a2e1632fb6dc72fad1b32a64cea53483ed763147
.exe windows x86

fdc1b82516a0ea0e90224d192f2e45d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExW
HeapFree
MoveFileExW
GetModuleFileNameW
SetLastError
GetLastError
lstrcmpW
DeleteFileA
SetThreadExecutionState
CloseHandle
CreateProcessW
GetWindowsDirectoryW
GetProcessHeap
GetModuleHandleA
GetStartupInfoA
OutputDebugStringW
CreateFileA
CreateMutexA
GetComputerNameW
SetFileAttributesA
SetFilePointer
GetCurrentThreadId
GetVersionExA
InitializeCriticalSection
DeleteCriticalSection
HeapReAlloc
HeapAlloc
ExitProcess
SetEvent
CreateEventA
FormatMessageW
FormatMessageA
LocalAlloc
LocalFree
GetWindowsDirectoryA
SetThreadLocale
GetThreadLocale
WideCharToMultiByte
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
WriteFile
ReleaseMutex
RaiseException
lstrcpyA
lstrlenA
WaitForMultipleObjects
InterlockedIncrement
InterlockedExchange
Sleep
ReadFile
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
lstrcmpiW
lstrcpyW
CopyFileW
lstrcpynW
lstrlenW
DeleteFileW
GetSystemTimeAsFileTime
ExpandEnvironmentStringsW
CreateFileW
GlobalAlloc
VirtualAlloc

user32

GetMessageW
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
SendMessageW
DdeAddData
DdeCreateDataHandle
CloseClipboard
GetClipboardData
OpenClipboard
DdePostAdvise
DdeClientTransaction
InvalidateRect
ReleaseDC
GetDC
FlashWindow
SetTimer
PostMessageW
DdeCreateStringHandleW
DdeFreeStringHandle
SetWindowTextW
wsprintfW
DdeQueryStringW
DdeCmpStringHandles
DdeGetData
DialogBoxParamW
EndDialog
WinHelpW
CheckDlgButton
SendDlgItemMessageW
GetSysColor
LoadStringW
GetSystemMetrics
LoadIconW
LoadCursorA
LoadIconA

msvcrt

wcsncpy
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
__winitenv
exit
_XcptFilter
_exit
_c_exit
_wcslwr
wcsstr
_wfopen
fclose
_wfullpath
_wsplitpath
swprintf
_ftol
_ltow
floor
fwprintf
_cexit

advapi32

FreeSid
SetFileSecurityW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
CloseServiceHandle
RegDeleteKeyW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
RegQueryInfoKeyW
RegEnumValueW
RegEnumKeyExW
RegCreateKeyW
DeregisterEventSource
RegisterEventSourceW
RegQueryValueExW
OpenServiceW
OpenSCManagerW
QueryServiceConfigW
QueryServiceStatus
LsaClose
LsaOpenPolicy
RegQueryValueExA
RegOpenKeyExA

shlwapi

SHDeleteValueW
SHGetValueW
StrCpyNW
PathGetArgsW
StrCmpIW
ChrCmpIW
StrToIntW
StrCmpNIW
PathFindFileNameW
PathRemoveFileSpecW
PathAppendW

Sections

.text
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 199B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fdc1b82516a0ea0e90224d192f2e45d1

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

advapi32

shlwapi

Sections

.text Size: 113KB - Virtual size: 113KB

.data Size: 5KB - Virtual size: 5KB

.data3 Size: 11KB - Virtual size: 11KB

.data2 Size: 512B - Virtual size: 199B

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 113KB - Virtual size: 113KB

.data
Size: 5KB - Virtual size: 5KB

.data3
Size: 11KB - Virtual size: 11KB

.data2
Size: 512B - Virtual size: 199B

.rsrc
Size: 14KB - Virtual size: 14KB