b2d6d496e5d2c05c2dfcdaa5d21c5da012276c741c67883ae60a632154e427b1

Sharing

Copy URL

Twitter E-mail

General

Target

b2d6d496e5d2c05c2dfcdaa5d21c5da012276c741c67883ae60a632154e427b1
Size

45KB
MD5

5dc61f7f8e45d241823f0e3e55085886
SHA1

d0b12ea08043260d3abe26605070f8c33c9311b5
SHA256

b2d6d496e5d2c05c2dfcdaa5d21c5da012276c741c67883ae60a632154e427b1
SHA512

d5b610564aa14d8bc0850dafe59bf2bdd203acfe47a38ba5eb4a53d24533817396bcbea3439a5b95b75d94cb7b3ae5d827dc1a5a12ea54af992e001cc55f3fc9
SSDEEP

768:ibQ+LtyRq0UnHqi519uinZkz71UvojNXZSg8g6QoC6/dDw45yc7JDHOvpD9BQBYw:M6q0mN19uinZkzRUvojdQgd6ImdU8JDT

Score

N/A

Malware Config

Signatures

Files

b2d6d496e5d2c05c2dfcdaa5d21c5da012276c741c67883ae60a632154e427b1
.exe windows x86

32b0826e896f0f1ba424280f7401cefb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TryEnterCriticalSection
MultiByteToWideChar
SetEvent
IsBadStringPtrW
GetCurrentThreadId
GetCommandLineW
lstrcpyA
lstrlenA
LoadLibraryExA
GetSystemTimeAsFileTime
GetCurrentProcessId
CreateEventW
QueryPerformanceCounter
GetStartupInfoW
GetModuleHandleA
ExitProcess
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
CreateThread
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
FormatMessageW
LocalAlloc
GetModuleFileNameW
lstrcpyW
InterlockedIncrement
InterlockedDecrement
Sleep
GetModuleHandleExW
LoadLibraryExW
LocalFree
WaitForSingleObject
CloseHandle
lstrlenW
GetLastError
FindResourceExW
FindResourceW
LoadResource
HeapAlloc
HeapDestroy
RaiseException
GetVersionExA
LockResource
SizeofResource
FreeLibrary
DeleteCriticalSection
GetProcAddress
InitializeCriticalSection
GetVersionExW
GetThreadLocale
LoadLibraryA
GetLocaleInfoA
GetACP
GetTickCount
InterlockedExchange

user32

wsprintfA
wsprintfW
MessageBoxW
PostThreadMessageW
TranslateMessage
DispatchMessageW
CharUpperW
CharNextW
LoadStringW
GetMessageW

advapi32

ControlService
ReportEventW
RegisterEventSourceW
SetServiceStatus
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
CloseServiceHandle
RegOpenKeyExA
RegQueryValueExA
StartServiceCtrlDispatcherW
RegisterServiceCtrlHandlerW
DeregisterEventSource
DeleteService
CreateServiceW
OpenSCManagerW
OpenServiceW

shell32

SHGetSpecialFolderPathA

ole32

CoInitializeSecurity
CoInitializeEx
CoCreateInstance
CoUninitialize

oleaut32

SysAllocStringByteLen
SysStringByteLen
SysStringLen
SysFreeString
CreateErrorInfo

atl71

ord24
ord61
ord23
ord20
ord64
ord17
ord30
ord22
ord18

shlwapi

PathCombineW
PathRemoveFileSpecW
PathAddBackslashW
PathRemoveBackslashA
PathAddBackslashA

msvcp71

?_Nomemory@std@@YAXXZ

msvcr71

__setusermatherr
_initterm
__wgetmainargs
_amsg_exit
_wcmdln
_adjust_fdiv
_cexit
_XcptFilter
_controlfp
__set_app_type
__p__fmode
exit
??1type_info@@UAE@XZ
memset
_except_handler3
memmove
_putws
vswprintf
free
malloc
wcscmp
_vscwprintf
memcpy
??_V@YAXPAX@Z
??3@YAXPAX@Z
wcslen
wcscat
__CxxFrameHandler
_CxxThrowException
iswprint
memcmp
strcat
_stricmp
_splitpath
_callnewh
__security_error_handler
_exit
__dllonexit
_onexit
?terminate@@YAXXZ
_c_exit
__p__commode

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32b0826e896f0f1ba424280f7401cefb

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

oleaut32

atl71

shlwapi

msvcp71

msvcr71

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 5KB - Virtual size: 5KB