d1aebd7b2755a3c68227e51080608effaeef51294f28a99babdd373bbf897671

Sharing

Copy URL Twitter E-mail

General

Target

d1aebd7b2755a3c68227e51080608effaeef51294f28a99babdd373bbf897671
Size

152KB
MD5

1b9b51ba78dd5b7ff999c61cc9df9ae0
SHA1

1cd829121ae0877762c59b8f4bdcceba61e1f0e2
SHA256

d1aebd7b2755a3c68227e51080608effaeef51294f28a99babdd373bbf897671
SHA512

9de48ea2122b0bfa7e6cb9f759fdd2ffae673dea2ce94af9d3451aed5dbad7846a5d6983b1038feb9a2293675f582fadf4957fce5c070e941415e24f75232645
SSDEEP

1536:O+K1+SPvHlsvR9syC2NCPl/XP3+CaY/lCxpogOyNtlqms2+sRFiIUGA3bTGjQ8ME:AC9syMtv9NAkyNtlqmt+vXR8oKEDUBc

Score

N/A

Malware Config

Signatures

Files

d1aebd7b2755a3c68227e51080608effaeef51294f28a99babdd373bbf897671
.exe windows x86

229404d35ae8a847016ca7c9a9fa35d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetCallContext
CoDisconnectObject
CoImpersonateClient
CoRevertToSelf
CoInitialize
CoInitializeSecurity
CoUninitialize
CoSuspendClassObjects
CoCreateInstance
CoTaskMemRealloc
CoRegisterClassObject
CoRevokeClassObject
StringFromGUID2
CoTaskMemAlloc
CoTaskMemFree

oleaut32

SysAllocString
LoadTypeLi
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
SysFreeString

shlwapi

PathFindExtensionA

advapi32

GetLengthSid
EqualSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
IsValidSecurityDescriptor
AccessCheck
GetSidLengthRequired
InitializeSid
GetSidSubAuthority
SetSecurityDescriptorDacl
SetSecurityDescriptorGroup
SetSecurityDescriptorOwner
MakeAbsoluteSD
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumKeyExA
IsValidSid
CopySid
AddAce
InitializeAcl
GetAclInformation
InitializeSecurityDescriptor
GetSecurityDescriptorControl
GetSecurityDescriptorSacl
GetSecurityDescriptorDacl
GetSecurityDescriptorGroup
GetSecurityDescriptorOwner

kernel32

QueryPerformanceCounter
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
HeapSize
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetOEMCP
GetCPInfo
IsBadReadPtr
IsBadCodePtr
GetProcessHeap
SetFilePointer
SetStdHandle
FlushFileBuffers
InterlockedDecrement
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
MultiByteToWideChar
WideCharToMultiByte
RaiseException
GetLastError
InitializeCriticalSection
DeleteCriticalSection
GetVersion
lstrcmpiA
lstrlenW
lstrlenA
FreeLibrary
GetProcAddress
LoadLibraryA
IsBadWritePtr
InterlockedIncrement
lstrcpynA
lstrcpyA
GetModuleFileNameA
lstrcatA
IsDBCSLeadByte
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
GetModuleHandleA
GetCurrentThreadId
GetCommandLineA
CloseHandle
GetCurrentThread
GetCurrentProcess
OpenProcess
GetTickCount
GetCurrentProcessId
GetStartupInfoA
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
ExitProcess
RtlUnwind
HeapReAlloc
TerminateProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
LeaveCriticalSection
EnterCriticalSection

user32

CharNextA
PostThreadMessageA
DispatchMessageA
GetMessageA
LoadStringA

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

229404d35ae8a847016ca7c9a9fa35d5

Headers

File Characteristics

Imports

ole32

oleaut32

shlwapi

advapi32

kernel32

user32

Sections

.text Size: 72KB - Virtual size: 71KB

.data Size: 12KB - Virtual size: 8KB

.rsrc Size: 4KB - Virtual size: 2KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 72KB - Virtual size: 71KB

.data
Size: 12KB - Virtual size: 8KB

.rsrc
Size: 4KB - Virtual size: 2KB

.rmnet
Size: 60KB - Virtual size: 60KB