550ec208b639a10f68cd7a33f069a7059d51936a6acb92bd0cef1fcc32b16c80

General

Target

550ec208b639a10f68cd7a33f069a7059d51936a6acb92bd0cef1fcc32b16c80
Size

167KB
MD5

6db2c43ad79d9b944ff57f7faeb12ed4
SHA1

ef8b7e8d000947890d929fbd8c6c23ff43b931a1
SHA256

550ec208b639a10f68cd7a33f069a7059d51936a6acb92bd0cef1fcc32b16c80
SHA512

d83b6c41d3fe13d7a510dfe6a3eea358722a225a784f1ff4da69945545139823670dbbe90a8130cf0b06147c8023fd19374adb205dc5d40be122b503539e3c60
SSDEEP

3072:3//Sxak3diPM3JwOy8fCoG3o9ZCZBhWBJPqv2cJdTs6G0Bm7mK6WyWNH:3/a2k3KK6v6wUJqecvY9yKxZH

Score

N/A

Malware Config

Signatures

Files

550ec208b639a10f68cd7a33f069a7059d51936a6acb92bd0cef1fcc32b16c80
.exe windows x86

35ffa1eac24e7de11e56e05af8cbab52

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

AlphaBlend
TransparentBlt

kernel32

GetCPInfoExW
FreeEnvironmentStringsA
EnterCriticalSection
GetFileType
GetThreadLocale
GetLastError
lstrlenW
GetLocaleInfoA
SetHandleCount
InitializeCriticalSection
MultiByteToWideChar
DeleteCriticalSection
InterlockedIncrement
GetStartupInfoA
FreeEnvironmentStringsW
HeapSize
GetOEMCP
UnhandledExceptionFilter
GetCPInfo
EnumResourceTypesA
WriteFile
TlsSetValue
QueryPerformanceCounter
GetACP
GetTickCount
GetVersionExA
GetComputerNameW
GetEnvironmentStrings
RaiseException
WideCharToMultiByte
LeaveCriticalSection
InterlockedExchange
GetEnvironmentStringsW
GetStdHandle
TlsGetValue
GetCurrentProcessId

shell32

SHGetFolderPathW

ole32

CoGetMalloc
CoTaskMemAlloc
CoTaskMemFree
StringFromGUID2
CoCreateInstance
CoTaskMemRealloc

gdi32

SelectObject
DeleteObject
GetTextExtentPointA
GetDeviceCaps
GetTextMetricsA
CreateFontIndirectA

newdev

UpdateDriverForPlugAndPlayDevicesW

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35ffa1eac24e7de11e56e05af8cbab52

Headers

File Characteristics

Imports

msimg32

kernel32

shell32

ole32

gdi32

newdev

Sections

.text Size: 96KB - Virtual size: 95KB

.tls Size: 2KB - Virtual size: 1KB

.data Size: 67KB - Virtual size: 67KB

.reloc Size: 1024B - Virtual size: 108KB

.text
Size: 96KB - Virtual size: 95KB

.tls
Size: 2KB - Virtual size: 1KB

.data
Size: 67KB - Virtual size: 67KB

.reloc
Size: 1024B - Virtual size: 108KB