b7f3c046b09251497903ec30e9998ab6b0637d7ed532f41d3a7f06eafd703ae4

Sharing

Copy URL

Twitter E-mail

General

Target

b7f3c046b09251497903ec30e9998ab6b0637d7ed532f41d3a7f06eafd703ae4
Size

43KB
MD5

68f7cd86e684fdefe694b0966ad35cf0
SHA1

d6b17f9e82f3eec96c13c550903526256694e81e
SHA256

b7f3c046b09251497903ec30e9998ab6b0637d7ed532f41d3a7f06eafd703ae4
SHA512

4d2725f69a784b9fdac2c91d63fbcf7a1f7b693075b4276266e4607cdbd9095fb06ba712968981373fc307dfca37772f455db1f10aff74ed667cf4bdf7bd55c0
SSDEEP

768:Z7HJqiF0F+84+xiOpniAxYEBkKWjgWE0NK1NixgPl9q07aBTRP5nQjm:ZFqi6eYiMiA+EE0WtW4xg99q07a9RhnQ

Score

N/A

Malware Config

Signatures

Files

b7f3c046b09251497903ec30e9998ab6b0637d7ed532f41d3a7f06eafd703ae4
.exe windows x86

ee4fa5b127737f46932de449430d92e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscat32

CryptCATAdminReleaseContext
CryptCATAdminAcquireContext
CryptCATAdminEnumCatalogFromHash
CryptCATCatalogInfoFromContext

msvcrt

malloc
_vsnprintf
wcsrchr
wcslen
memmove
memcpy
_adjust_fdiv
_wcsicmp
_initterm
wcscpy
_except_handler3
wcsncpy
_vsnwprintf
strrchr
_purecall
memset
wcsncmp
free
wcscmp
_wcsnicmp

ole32

StringFromCLSID
CoCreateGuid
CoTaskMemFree
CLSIDFromString

advapi32

SetNamedSecurityInfoW
RegOpenKeyW
GetTraceEnableFlags
RegCloseKey
RegCreateKeyExA
RegisterTraceGuidsW
RegDeleteValueW
RegSetValueExA
GetTraceEnableLevel
RegQueryValueExA
RegSetKeySecurity
GetSecurityDescriptorDacl
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegQueryValueExW
GetTraceLoggerHandle
RegSetValueExW
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExW

kernel32

InterlockedExchange
SetFileAttributesW
FreeLibrary
DeleteFileW
GetProcAddress
GetFileAttributesW
LocalAlloc
GetProcessHeap
GetLastError
GetEnvironmentStringsW
GetCurrentProcess
GetLocalTime
ExitProcess
GetSystemTimeAsFileTime
MapViewOfFile
GetVersionExA
TlsSetValue
SetThreadPriority
CreateFileW
LoadLibraryA
CreateFileA
lstrlenA
WriteFile
QueryPerformanceCounter
CopyFileW
EnterCriticalSection
InterlockedIncrement
GetTickCount
GlobalMemoryStatus
GetCurrentThreadId
RemoveDirectoryW
TlsAlloc
GetModuleHandleA
UnhandledExceptionFilter
VirtualAlloc
lstrlenW
GetProcessAffinityMask
DeviceIoControl
SetThreadAffinityMask
UnmapViewOfFile
GetModuleHandleW
InitializeCriticalSection
GetDiskFreeSpaceA
CreateDirectoryW
GetVersion
OutputDebugStringA
GetSystemInfo
VirtualFree
LocalFree
FindClose
ReadFile
CreateEventA
TerminateProcess
SetLastError
GetEnvironmentStrings
CloseHandle
TlsFree
HeapFree
FreeEnvironmentStringsW
FreeEnvironmentStringsA
LeaveCriticalSection
Sleep
VirtualProtect
GetModuleFileNameA
CreateFileMappingA
ResumeThread
TlsGetValue
MultiByteToWideChar
SetEvent
GetWindowsDirectoryW
HeapAlloc
InterlockedDecrement
WaitForSingleObject
DeleteCriticalSection
LoadLibraryW
SetUnhandledExceptionFilter
CreateThread
FindNextFileW
GetSystemTime
GetCurrentProcessId
InitializeCriticalSectionAndSpinCount
GetFileSize
FindFirstFileW
WideCharToMultiByte

lz32

LZClose

winmm

auxSetVolume

Sections

.textbss
Size: 36KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee4fa5b127737f46932de449430d92e6

Headers

File Characteristics

Imports

mscat32

msvcrt

ole32

advapi32

kernel32

lz32

winmm

Sections

.textbss Size: 36KB - Virtual size: 176KB

.text Size: 512B - Virtual size: 420B

.idata Size: 4KB - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 32B

.reloc Size: 512B - Virtual size: 4B

.textbss
Size: 36KB - Virtual size: 176KB

.text
Size: 512B - Virtual size: 420B

.idata
Size: 4KB - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 32B

.reloc
Size: 512B - Virtual size: 4B