22bd77fd8d62d879e0a0b33e1f88d688d7755e7244538a5ef3d26e80832449c7

Sharing

Copy URL Twitter E-mail

General

Target

22bd77fd8d62d879e0a0b33e1f88d688d7755e7244538a5ef3d26e80832449c7
Size

260KB
MD5

5fc447e3d7b62b811e9a2793507122c0
SHA1

c5d28461353b54f9243c8e9106344f967f6f2e4e
SHA256

22bd77fd8d62d879e0a0b33e1f88d688d7755e7244538a5ef3d26e80832449c7
SHA512

e2406815c38960b4d1cf8c6ed12984b58b27ac638affe5f42049e28e19be15f9af54f3a0c26f8d0069306757bfcd0176f6eb7ca2b54195b0e2a9ed1bac9c79e1
SSDEEP

6144:fug6zxgTjxIrnboYlepRt0+MRtaPFcU3FFnJEz/5tB2:fWo6boYlgpMRtsF/3FEN6

Score

N/A

Malware Config

Signatures

Files

22bd77fd8d62d879e0a0b33e1f88d688d7755e7244538a5ef3d26e80832449c7
.exe windows x86

c2c0bca1aaf250424dac73d5e024a40f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fclose
printf
wcslen
fprintf
_strnicmp
rand
strncpy
_splitpath
strncmp
_strupr
_fullpath
vprintf
isprint
_iob
memmove
_stricmp
fflush
_itoa
toupper
sprintf
fopen
_makepath

kernel32

SetThreadPriority
GlobalAlloc
GetSystemDefaultLangID
SetEvent
InterlockedIncrement
HeapCreate
CompareStringW
FindFirstFileA
GetEnvironmentStringsA
GetFileAttributesA
VirtualFree
WriteFile
SetFilePointer
QueryPerformanceCounter
SetEndOfFile
WaitForSingleObject
GetLastError
CloseHandle
CreateThread
GetExitCodeThread
LoadLibraryW
CreateDirectoryA
GetTickCount
MapViewOfFile
GetSystemInfo
OpenEventA
FindClose
OpenSemaphoreA
FindNextFileA
GetProcAddress
lstrlenA
GetDiskFreeSpaceA
GetUserDefaultLangID
OutputDebugStringA
LeaveCriticalSection
GetOEMCP
OpenMutexA
LCMapStringW
InterlockedDecrement
GetEnvironmentStringsW
CreateSemaphoreA
GlobalFree
OpenFileMappingA
GlobalFindAtomW
CreateMutexA
GetCPInfo
GetModuleFileNameA
GetFileSize
WaitForMultipleObjects
SetLastError
ResetEvent
EnterCriticalSection
UnmapViewOfFile
GetUserDefaultLCID
GetCurrentProcessId
lstrcpyA
ReadFile
lstrcmpA
CreateEventA
GetModuleHandleW
WriteFileEx
ReleaseSemaphore
CreateFileA
RemoveDirectoryA
FreeLibrary
ReleaseMutex
ExpandEnvironmentStringsA
ReadFileEx
WaitForSingleObjectEx
DeleteCriticalSection

advapi32

RegSetValueExA
GetLengthSid
DeregisterEventSource
AllocateAndInitializeSid
RegisterEventSourceA
RegDeleteKeyA
RegOpenKeyExA
FreeSid
RegDeleteValueA
ReportEventA
RegCreateKeyExA
RegQueryValueExA
InitializeAcl
RegCloseKey
SetSecurityDescriptorDacl

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 241KB - Virtual size: 241KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2c0bca1aaf250424dac73d5e024a40f

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rsrc Size: 241KB - Virtual size: 241KB

.reloc Size: 512B - Virtual size: 312B

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 241KB - Virtual size: 241KB

.reloc
Size: 512B - Virtual size: 312B