eed5de676ac7246ae5d3258c58c5b19ad15f40ac9db6026e4aa022c1d3b4824d

Sharing

Copy URL

Twitter E-mail

General

Target

eed5de676ac7246ae5d3258c58c5b19ad15f40ac9db6026e4aa022c1d3b4824d
Size

258KB
MD5

6b2adc40b9610adacc765ecb58e79180
SHA1

ce8fcb17754340852ebec8e5e2d61c7bcb09f658
SHA256

eed5de676ac7246ae5d3258c58c5b19ad15f40ac9db6026e4aa022c1d3b4824d
SHA512

7d3d080c27f9578cf7970432232e01c6c5d16e295bddddd8e7f5b6fe9a7385bdd64eb4108baab0e890a847b77b5468a33408bec36df7fd359fdc4a30e407095b
SSDEEP

6144:jW0xRS8R8cLlwvAFdv3Kz+rNgaJSww7xSL:SQRS8Rb3LvlgaQwOSL

Score

N/A

Malware Config

Signatures

Files

eed5de676ac7246ae5d3258c58c5b19ad15f40ac9db6026e4aa022c1d3b4824d
.exe windows x86

80c482fcf293565d596c3dc937c4ae2c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
GetCPInfo
GetOEMCP
CreateThread
GetFileSize
CompareStringW
DeleteCriticalSection
GetTickCount
VirtualFree
CreateSemaphoreA
LoadLibraryW
GetFileAttributesA
LCMapStringW
ReleaseSemaphore
GetSystemDefaultLangID
OpenSemaphoreA
GetLastError
WaitForMultipleObjects
FindClose
WaitForSingleObject
UnmapViewOfFile
CreateDirectoryA
GetExitCodeThread
RemoveDirectoryA
CreateMutexA
WaitForSingleObjectEx
lstrcmpA
ReleaseMutex
SetLastError
InterlockedDecrement
FreeLibrary
CreateFileA
FindFirstFileA
lstrcpyA
GlobalAlloc
GetUserDefaultLCID
GetEnvironmentStringsA
GlobalFree
OpenMutexA
GetModuleFileNameA
SetThreadPriority
SetEvent
OutputDebugStringA
MapViewOfFile
CloseHandle
WriteFileEx
OpenFileMappingA
QueryPerformanceCounter
GetEnvironmentStringsW
GlobalFindAtomW
SetEndOfFile
SetFilePointer
ResetEvent
CreateEventA
lstrlenA
ReadFile
GetSystemInfo
GetCurrentProcessId
GetProcAddress
WriteFile
GetDiskFreeSpaceA
GetUserDefaultLangID
LeaveCriticalSection
OpenEventA
ReadFileEx
ExpandEnvironmentStringsA
InterlockedIncrement
FindNextFileA

advapi32

RegDeleteValueA
RegQueryValueExA
AllocateAndInitializeSid
RegCloseKey
RegSetValueExA
RegOpenKeyExA
FreeSid
RegDeleteKeyA
RegisterEventSourceA
RegCreateKeyExA
GetLengthSid
SetSecurityDescriptorDacl
ReportEventA
InitializeAcl
DeregisterEventSource

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 241KB - Virtual size: 241KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

80c482fcf293565d596c3dc937c4ae2c

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rsrc Size: 241KB - Virtual size: 241KB

.reloc Size: 512B - Virtual size: 252B

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 241KB - Virtual size: 241KB

.reloc
Size: 512B - Virtual size: 252B