44675baf613c7aaa59e340ea36a42b8d0434b2db16c22c98c5a1266c8d3e7f82

General

Target

44675baf613c7aaa59e340ea36a42b8d0434b2db16c22c98c5a1266c8d3e7f82
Size

169KB
MD5

6889e4a39640df7ad1e934ca8e8c204d
SHA1

b83bb60db5db370aa94628f631add76557ee943a
SHA256

44675baf613c7aaa59e340ea36a42b8d0434b2db16c22c98c5a1266c8d3e7f82
SHA512

d335e22f2f7cdf821f0e965d458d95040f87e15b675c7d60f33577d51754b5ab5a7de1183614cb16bb7f94a937d7af5c444e3997f163062bc81a7ac6f04456cc
SSDEEP

3072:MjvkawYp4AJNYLDZ+wOXMATaVJHSFR2t/bsOdandsafnyFrIUhV1Z1:AMy6VPHbQDndsa/ymk

Score

N/A

Malware Config

Signatures

Files

44675baf613c7aaa59e340ea36a42b8d0434b2db16c22c98c5a1266c8d3e7f82
.exe windows x86

46c83a6d8429789101ee24fe9ff719d8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

gdi32

DeleteObject

setupapi

CM_Get_Sibling
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyA
CM_Get_DevNode_Status

advapi32

ControlService
ReportEventW
OpenThreadToken
SetServiceStatus
RegEnumKeyExW
DeregisterEventSource
RegisterEventSourceW
OpenSCManagerW
OpenProcessToken
CloseServiceHandle
DeleteService
OpenServiceW
CreateServiceW

kernel32

ReleaseMutex
EnterCriticalSection
LeaveCriticalSection
FindAtomA
GetFileAttributesW
DeleteFileW
LoadResource
GetModuleHandleA
GetTickCount
CreateDirectoryW
FindFirstFileW
FindNextFileW
SetPriorityClass
GetCurrentProcessId
EnumResourceLanguagesW
ExitProcess
CreateFileW
OutputDebugStringW
QueryPerformanceCounter
FindClose
LoadModule
DeviceIoControl
GetCommandLineW
GetExitCodeThread
OpenThread
GetDriveTypeW
GetStartupInfoW
CopyFileW
SetThreadPriority
LoadLibraryExW
GetProcAddress
ResumeThread
GetSystemTimeAsFileTime
FindResourceW

Sections

.text
Size: 86KB - Virtual size: 485KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46c83a6d8429789101ee24fe9ff719d8

Headers

File Characteristics

Imports

gdi32

setupapi

advapi32

kernel32

Sections

.text Size: 86KB - Virtual size: 485KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 86KB - Virtual size: 485KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 512B - Virtual size: 4KB