f02fcee4ec8227189fb156293be1abd0e556248d69c5bbe0e8e96c6317a08885

Sharing

Copy URL Twitter E-mail

General

Target

f02fcee4ec8227189fb156293be1abd0e556248d69c5bbe0e8e96c6317a08885
Size

76KB
MD5

213532822f4a3deb48dd9c5a1c047d20
SHA1

8521048d50f93196a2964f7c4ef2f53603e138f7
SHA256

f02fcee4ec8227189fb156293be1abd0e556248d69c5bbe0e8e96c6317a08885
SHA512

caf4e534b68ba1ab34e722d91e4eb546c1738bf9c9c934126cd19902c408f8547275ee2af50109303e46b29c7def4aae2cf69844d64e0b2b435f73f18619f48d
SSDEEP

768:4qAwqo0QSwCS2sSmmR0J5ixPlcQ1ky7UevxHs4gZWktHdmyHJ7NnsVZ:zAwb0QXmR8E7j1kQJxHeWG9PpBnsj

Score

N/A

Malware Config

Signatures

Files

f02fcee4ec8227189fb156293be1abd0e556248d69c5bbe0e8e96c6317a08885
.exe windows x86

91a29dccf44afe5feea0d2ee8c84ffa5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
__winitenv
exit
_cexit
_XcptFilter
_exit
_c_exit
wcscmp
wprintf
wcsrchr
_wcsicmp
_wcsnicmp
iswalpha
towupper
towlower
wcschr
??2@YAPAXI@Z
??3@YAXPAX@Z
_iob
fputs
fputws

advapi32

RegSetValueExW
LookupPrivilegeValueW
OpenProcessToken
RegQueryValueExW
RegCloseKey
RegDeleteValueW
CloseServiceHandle
OpenServiceW
OpenSCManagerW
AdjustTokenPrivileges

kernel32

GetLastError
GetCurrentProcess
lstrlenW
FormatMessageW
LocalFree
lstrcpyW
GetDateFormatW
FileTimeToSystemTime
lstrcpynW
GetProcAddress
FreeLibrary
LoadLibraryW
GetFileAttributesW
GetFullPathNameW
CloseHandle

setupapi

SetupDiOpenDevRegKey
SetupDiSetDeviceInstallParamsW
SetupDiBuildDriverInfoList
SetupDiEnumDriverInfoW
SetupDiGetDriverInfoDetailW
SetupDiGetDeviceInstallParamsW
SetupCloseFileQueue
SetupScanFileQueueW
SetupDiCallClassInstaller
SetupOpenFileQueue
SetupDiSetSelectedDriverW
SetupDiGetDriverInstallParamsW
SetupDiOpenClassRegKeyExW
SetupDiGetClassDescriptionExW
SetupDiClassNameFromGuidExW
SetupDiBuildClassInfoListExW
SetupDiSetClassInstallParamsW
SetupDiSetDeviceRegistryPropertyW
SetupDiCreateDeviceInfoW
SetupDiCreateDeviceInfoList
SetupDiGetINFClassW
SetupDiRemoveDevice
CM_Disconnect_Machine
CM_Reenumerate_DevNode_Ex
CM_Locate_DevNode_ExW
CM_Connect_MachineW
CM_Get_First_Log_Conf_Ex
CM_Free_Log_Conf_Handle
CM_Get_Next_Res_Des_Ex
CM_Free_Res_Des_Handle
CM_Get_Res_Des_Data_Size_Ex
SetupDiGetDeviceRegistryPropertyW
SetupDiDestroyDeviceInfoList
CM_Get_Device_ID_ExW
SetupDiEnumDeviceInfo
SetupDiGetDeviceInfoListDetailW
SetupDiOpenDeviceInfoW
SetupDiCreateDeviceInfoListExW
SetupDiGetClassDevsExW
SetupDiClassGuidsFromNameExW
CM_Get_DevNode_Status_Ex
CM_Get_Res_Des_Data_Ex
SetupDiDestroyDriverInfoList

user32

ExitWindowsEx
CharPrevW
CharNextW
LoadStringW

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

91a29dccf44afe5feea0d2ee8c84ffa5

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

setupapi

user32

Sections

.text Size: 25KB - Virtual size: 25KB

.data Size: 512B - Virtual size: 420B

.rsrc Size: 50KB - Virtual size: 53KB

.text
Size: 25KB - Virtual size: 25KB

.data
Size: 512B - Virtual size: 420B

.rsrc
Size: 50KB - Virtual size: 53KB