e5c8314bf483a2df5c4429ebe9702bdcff3e2d3a6b0d5df578727ffcf91065b3

Sharing

Copy URL Twitter E-mail

General

Target

e5c8314bf483a2df5c4429ebe9702bdcff3e2d3a6b0d5df578727ffcf91065b3
Size

652KB
MD5

6dbe9c071be20f0ed3f237b9783a22db
SHA1

473c4a812daaf692a5814f83dfb1ce8792268ffd
SHA256

e5c8314bf483a2df5c4429ebe9702bdcff3e2d3a6b0d5df578727ffcf91065b3
SHA512

e91c7c1d97afd06ee76e1457317c75c3a379930ca9b6353e9de33431bc9a677e63ec8eefce9961d86386c1e81607088e491fc36ea1f29c84019e30539d228238
SSDEEP

12288:hXJ3tE6X1cZ/JbyEqNRmzJg1MHL7/ug3MgsW:7JcH/V3

Score

N/A

Malware Config

Signatures

Files

e5c8314bf483a2df5c4429ebe9702bdcff3e2d3a6b0d5df578727ffcf91065b3
.exe windows x86

447bbc202b04962dad8b1f149ae8372d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

AllocateAndInitializeSid
GetSecurityDescriptorControl
LockServiceDatabase
RegSetValueExW
RegQueryInfoKeyW
RegDeleteKeyW
RegQueryValueExA
RegCreateKeyExW
RegQueryValueW
RegDeleteKeyA
RegEnumKeyExW
GetTokenInformation
RegOpenKeyExW
FreeSid

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW

comctl32

CreatePropertySheetPageA
ImageList_Create
ord17
PropertySheetW
PropertySheetA
CreatePropertySheetPageW
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_Draw
ImageList_AddMasked
ImageList_Destroy
ord6
DestroyPropertySheetPage

kernel32

GetOEMCP
GetProcAddress
MultiByteToWideChar
GetStringTypeA
FlushFileBuffers
HeapAlloc
VirtualAlloc
GetFileTime
InterlockedIncrement
ResetEvent
HeapSize
GetThreadTimes
SetHandleCount
GetShortPathNameA
GetTimeFormatA
ExpandEnvironmentStringsA
GetTempPathW
CopyFileW
lstrcmpiW
ReadFile
Sleep
HeapCreate
GetProcessHeap
EnumSystemLocalesA
VirtualFree
GetACP
DeleteCriticalSection
FindResourceExW
WideCharToMultiByte
LoadLibraryExW
GetCPInfo
GetLocaleInfoA
GetCurrentThreadId
GetCurrentThread
lstrcpyA
WriteFile
SetEvent
GetStringTypeW
LockResource
LocalFree
GetVersion
CreateThread
FindResourceW
lstrcmpA
SetFilePointer
CreateEventA
WriteConsoleW
HeapFree
SetStdHandle
GetModuleHandleA
GetVersionExW
IsBadWritePtr
SetLastError
GetModuleFileNameA
GetShortPathNameW
SearchPathA
CreateDirectoryW
InterlockedDecrement
FreeLibrary
GetTempPathA
InterlockedCompareExchange
SystemTimeToFileTime
InterlockedExchange
GetVersionExA
ExitProcess
GetCurrentDirectoryA
SuspendThread
GetFileType
SetErrorMode
IsBadReadPtr
LoadResource
GetTickCount
CreateFileW
CloseHandle
CompareStringA
SetThreadPriority
LoadLibraryA
GlobalAlloc
CreateFileA
CreateEventW
LoadLibraryW
SetCurrentDirectoryW
GetThreadLocale
lstrcpynA
LCMapStringA
CreateDirectoryA
GetCurrentDirectoryW
UnmapViewOfFile
InitializeCriticalSection
FindResourceA
GetLastError
CreateFileMappingA
CreateMutexA
LocalAlloc
lstrcpynW
CreateFileMappingW
lstrlenW
IsBadStringPtrW
RaiseException
CopyFileA
GetLocalTime
ExitThread
GetSystemInfo
CompareStringW
GlobalHandle
FormatMessageA
GetStartupInfoA
GetTempFileNameA
HeapReAlloc
MapViewOfFile
GetSystemTimeAsFileTime
SearchPathW
SetPriorityClass
ResumeThread
GetFileSize
GetModuleHandleW
LCMapStringW
lstrcmpW
SetEnvironmentVariableA
SetEndOfFile
WriteConsoleA
GetSystemTime
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStdHandle
HeapDestroy
RtlUnwind

Sections

.text
Size: 124KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 516KB - Virtual size: 517KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

447bbc202b04962dad8b1f149ae8372d

Headers

File Characteristics

Imports

advapi32

version

comctl32

kernel32

Sections

.text Size: 124KB - Virtual size: 121KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 516KB - Virtual size: 517KB

.text
Size: 124KB - Virtual size: 121KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 516KB - Virtual size: 517KB