d628868bbe8395d7cace3ddbf74293f68aced19daf62ce7a5fb1e736bc2bfcea

General

Target

d628868bbe8395d7cace3ddbf74293f68aced19daf62ce7a5fb1e736bc2bfcea
Size

284KB
MD5

64886cede9039a5ad5d481bec737d8b0
SHA1

663ddb4da39e8443a3d4ea846068276d7462113a
SHA256

d628868bbe8395d7cace3ddbf74293f68aced19daf62ce7a5fb1e736bc2bfcea
SHA512

50200836d342ccf25bd15fca41834dcef3d090203d7affed45ba77484ffa114a7ce5e69f2d4b585ebd2a8930c321feb24274f33fc2bee2a63fddfa810cdf6f68
SSDEEP

6144:lpI6KDQMv+0xD0Ow0mi2UojUc9TEj2ol8FuYQH4cpUFBt65:lSUcKOw0mi29g6U7l8FuYQYqUF365

Score

N/A

Malware Config

Signatures

Files

d628868bbe8395d7cace3ddbf74293f68aced19daf62ce7a5fb1e736bc2bfcea
.exe windows x86

58b8ac2c650d5971db1ae84fc4270160

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
SetSecurityDescriptorDacl
GetSecurityDescriptorOwner
InitializeSecurityDescriptor
SetSecurityDescriptorOwner
TraceMessage
RegOpenKeyExW
GetTraceEnableLevel
AddAccessAllowedAce
InitializeAcl

msvcrt

free
wcslen
_initterm
wcsncmp
_purecall
wcscpy
malloc
_adjust_fdiv
__dllonexit
swprintf
_onexit
wcscmp

kernel32

GetStartupInfoA
GetCommandLineW
FindFirstFileW
GetLocaleInfoW
WriteConsoleW
FindNextFileW
GetTimeFormatW
GetStdHandle
DeleteFileA
SetFilePointer
MultiByteToWideChar
GetLocalTime
GetSystemDefaultLCID
GetEnvironmentStringsA
LocalAlloc
CloseHandle
VerifyVersionInfoW
GetModuleHandleA
LoadLibraryW
FreeLibrary
LocalFree
SetLastError
CreateFileW
GetFileType
GetFileAttributesW
GetDateFormatW
ReadFile
FormatMessageW

hnetcfg

HNetGetFirewallSettingsPage
HNetGetSharingServicesPage
HNetFreeSharingServicesPage
HNetDeleteRasConnection
HNetSharedAccessSettingsDlg
HNetSharingAndFirewallSettingsDlg

ws2_32

htonl
htons

iasacct

DllRegisterServer
DllUnregisterServer
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

58b8ac2c650d5971db1ae84fc4270160

Headers

File Characteristics

Imports

advapi32

msvcrt

kernel32

hnetcfg

ws2_32

iasacct

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 103KB - Virtual size: 102KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 103KB - Virtual size: 102KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 11KB - Virtual size: 10KB