06eed3e181a035c4f9897b1708ce70d689c29c6d3285b82f60cef53fb73de90d

General

Target

06eed3e181a035c4f9897b1708ce70d689c29c6d3285b82f60cef53fb73de90d
Size

169KB
MD5

62866722285fafde31889a63fc0a0f64
SHA1

3c47b6a58f7090938b415bcf55671922864d4b12
SHA256

06eed3e181a035c4f9897b1708ce70d689c29c6d3285b82f60cef53fb73de90d
SHA512

b2fb58951b05edf3b2691fc0066cb16f61403bd8c617d051202ce976e94161d49a0a2a5552bae8231f74a82df3c3dcf546d4d697ccc0e6420c7e2dba6c195c19
SSDEEP

3072:2lVMtrnWJqIAEOAEyb4ObaJhul80FyEMpDJe/kmmWlZAPy2HRSfejmiZ19voFz:JrnWJCAEgP0o+KFMve/ki6bIejmiuF

Score

N/A

Malware Config

Signatures

Files

06eed3e181a035c4f9897b1708ce70d689c29c6d3285b82f60cef53fb73de90d
.exe windows x86

e970c1373aa3a911357894ef6e12e3f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
GetDiskFreeSpaceA
DeleteCriticalSection
LCMapStringA
GetEnvironmentStringsW
InitializeCriticalSection
FreeLibrary
AddAtomA
LCMapStringW
FindFirstFileA
lstrlenA
GetThreadLocale
IsBadReadPtr
WideCharToMultiByte
VirtualProtect
GetProcAddress
GetCurrentThreadId
ReadFile
GetCPInfo
Sleep
GetStartupInfoA
lstrcmpA
MulDiv
FreeEnvironmentStringsA
FlushFileBuffers
EnterCriticalSection
CloseHandle
EnumResourceNamesW
SetUnhandledExceptionFilter
GetFileAttributesA
WriteFile
MultiByteToWideChar
LeaveCriticalSection
GetEnvironmentStrings
SetDllDirectoryW
CreateFileA
SetFilePointer
lstrcpyA
IsBadCodePtr
UnhandledExceptionFilter
GetLastError
FreeEnvironmentStringsW
LoadLibraryA
lstrcmpiA
lstrcpynA
GetTickCount
lstrcatA
SetStdHandle
GetModuleHandleA
GetFullPathNameA
GetOEMCP
GetStringTypeW
RaiseException

setupapi

CM_Get_Child
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 89KB - Virtual size: 485KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e970c1373aa3a911357894ef6e12e3f8

Headers

File Characteristics

Imports

kernel32

setupapi

Sections

.text Size: 89KB - Virtual size: 485KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 76KB - Virtual size: 76KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 89KB - Virtual size: 485KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 76KB - Virtual size: 76KB

.rsrc
Size: 512B - Virtual size: 4KB