3b8eec2745a6060f0c1ac933fe1e9da6ba3aef1fcc91b75e1d2c14e7992b3101

Sharing

Copy URL

Twitter E-mail

General

Target

3b8eec2745a6060f0c1ac933fe1e9da6ba3aef1fcc91b75e1d2c14e7992b3101
Size

128KB
MD5

69e1199ee9c4604d7b3642fb8f1d5840
SHA1

4837b2a0cc87fd373825b48ccb1bf6428069c86f
SHA256

3b8eec2745a6060f0c1ac933fe1e9da6ba3aef1fcc91b75e1d2c14e7992b3101
SHA512

58c0d1cb226143282d0201e75b92797ccd23a6596f92c159df2066ceb29bd3e1e496bb460f537214a53e19ed832a2a9de875807d43fb266460b0f8ba1966ef3e
SSDEEP

1536:aNFayQfAgR18TNqY/x0xNS6MD20XMkKoToJJrJJJWr6JrJk53EEt1l+lu9uU7zz6:Nt/kUY5MSxD20XM1orb7t8hbwZOX

Score

N/A

Malware Config

Signatures

Files

3b8eec2745a6060f0c1ac933fe1e9da6ba3aef1fcc91b75e1d2c14e7992b3101
.exe windows x86

13d2b193e17deffd5df8558752c81132

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetCloseEnum
WNetOpenEnumA
WNetEnumResourceA

shlwapi

PathFileExistsA

kernel32

GetCommandLineA
ExpandEnvironmentStringsA
GetWindowsDirectoryA
GetSystemDirectoryA
MoveFileA
SetFilePointer
CreateProcessA
WaitForSingleObject
CopyFileA
LCMapStringW
LCMapStringA
GetLastError
GetStringTypeA
MultiByteToWideChar
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
ReadFile
LoadLibraryExA
EnumResourceNamesA
FindResourceA
FreeLibrary
LoadResource
LockResource
BeginUpdateResourceA
UpdateResourceA
SizeofResource
SetEnvironmentVariableA
EndUpdateResourceA
CreateFileA
CloseHandle
DeleteFileA
CreateDirectoryA
Sleep
GlobalAlloc
WriteFile
GlobalFree
LocalAlloc
GetProcAddress
LoadLibraryA
CompareStringA
CompareStringW
GetStringTypeW
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetModuleHandleA
GetStartupInfoA
GetVersion
ExitProcess
HeapAlloc
HeapFree
HeapReAlloc
TerminateProcess
GetCurrentProcess
HeapSize
GetCPInfo
GetACP
GetOEMCP
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount

user32

GetMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
SetTimer
KillTimer
PostQuitMessage
CreateWindowExA
SendMessageA
LoadIconA
RegisterClassA
LoadCursorA
PostMessageA
FindWindowA

gdi32

GetDIBits
GetObjectA
CreateDCA
CreateCompatibleDC
GetDeviceCaps
CreateBitmap
SelectObject
BitBlt
TextOutA

advapi32

RegCloseKey
DeleteService
ChangeServiceConfigA
OpenSCManagerA
OpenServiceA
CloseServiceHandle
CreateServiceA
RegisterServiceCtrlHandlerA
SetServiceStatus
StartServiceCtrlDispatcherA
RegDeleteKeyA
RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13d2b193e17deffd5df8558752c81132

Headers

File Characteristics

Imports

mpr

shlwapi

kernel32

user32

gdi32

advapi32

Sections

.text Size: 36KB - Virtual size: 32KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 48KB - Virtual size: 45KB

.text
Size: 36KB - Virtual size: 32KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 48KB - Virtual size: 45KB