dc5f5c8ec8dda74223e1491c45d2d2ecb20a899d8e10600f6762b37a4b29ca1f

General

Target

dc5f5c8ec8dda74223e1491c45d2d2ecb20a899d8e10600f6762b37a4b29ca1f
Size

125KB
MD5

6029e6f89e9fa92eff0c694b55855f70
SHA1

8ac1f01335b18bb58ecb9118361b84cbcb32e6db
SHA256

dc5f5c8ec8dda74223e1491c45d2d2ecb20a899d8e10600f6762b37a4b29ca1f
SHA512

bb35be047e1c3b8f202bbdb002d694e7c33db562f017ac7f6d7bb47fd5dad48805886ff167bf3573e0c499cba49a3b080ea6c36a0c31ba7ad9f20ba48ca6d1d3
SSDEEP

3072:k16dip0rVgTL+AN7qluRUt253NxMRtto314A8cUKvtotT:w6dipWM3K1omAxrud

Score

N/A

Malware Config

Signatures

Files

dc5f5c8ec8dda74223e1491c45d2d2ecb20a899d8e10600f6762b37a4b29ca1f
.exe windows x86

82757e2354ccb53f904d2fac0d73d795

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

LockServiceDatabase
RegCreateKeyExA
GetTokenInformation
RegQueryValueExA
ChangeServiceConfig2A
RegOpenKeyW
RegCreateKeyExW
RegEnumValueW

msvcrt

iswalpha
_wfsopen
wcsncat
__p__fmode
_dup
wcscmp
atoi
wcscpy
_strlwr
strcspn
__unDName
bsearch
_snprintf

version

GetFileVersionInfoW
VerQueryValueA
GetFileVersionInfoA

kernel32

CreateFileMappingA
SetErrorMode
GetCurrentThreadId
GetLastError
ExitProcess
HeapFree
SetStdHandle
HeapAlloc
IsBadReadPtr
lstrcmpA
GetCurrentDirectoryA
lstrlenW
GetFileType
GlobalHandle
HeapDestroy
VirtualAlloc
GetLocalTime
WriteFile

comctl32

ImageList_Create
InitCommonControlsEx
PropertySheetA
ImageList_AddMasked
PropertySheetW

gdi32

AngleArc
CreateDIBitmap

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 40KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82757e2354ccb53f904d2fac0d73d795

Headers

File Characteristics

Imports

advapi32

msvcrt

version

kernel32

comctl32

gdi32

Sections

.text Size: 50KB - Virtual size: 49KB

.rdata Size: 5KB - Virtual size: 6KB

.data Size: 8KB - Virtual size: 21KB

.idata Size: 40KB - Virtual size: 92KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 50KB - Virtual size: 49KB

.rdata
Size: 5KB - Virtual size: 6KB

.data
Size: 8KB - Virtual size: 21KB

.idata
Size: 40KB - Virtual size: 92KB

.rsrc
Size: 20KB - Virtual size: 19KB