769b8d594fe2f53535893ebdbf99b34644b9031bb523675dafa1b28b02aaf0cc

Sharing

Copy URL

Twitter E-mail

General

Target

769b8d594fe2f53535893ebdbf99b34644b9031bb523675dafa1b28b02aaf0cc
Size

1.7MB
MD5

4263ded72ce5db08257c516b336a8b77
SHA1

9acbb3dcd2fd08e1c300cb85f0e9f49cd11e95f8
SHA256

769b8d594fe2f53535893ebdbf99b34644b9031bb523675dafa1b28b02aaf0cc
SHA512

5e82970cb805a89d21888ff72802886243c7becccd89b77c04b7c284aa2d63050523dc8b7b3c99cb01715f3661cc8a843ebfb5b9250bc3deaa12cf5c9fa76a60
SSDEEP

49152:7CaTzT8+7hYLzLCuKTPbTl/NRtLHTLyOQT6r8IH9:+XLC9FMM

Score

N/A

Malware Config

Signatures

Files

769b8d594fe2f53535893ebdbf99b34644b9031bb523675dafa1b28b02aaf0cc
.exe windows x86

7739a7612ff51e3d44200f6c9a0270d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
FindFirstFileW
FindNextFileW
CreateFileA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
FlushFileBuffers
GetConsoleMode
SetFileAttributesW
GetModuleFileNameW
VerifyVersionInfoW
VerSetConditionMask
SetLastError
InterlockedDecrement
InterlockedIncrement
TerminateProcess
GetExitCodeProcess
ReleaseMutex
OpenMutexW
CreateMutexW
WideCharToMultiByte
ExpandEnvironmentStringsW
RemoveDirectoryW
GetComputerNameW
GetCurrentProcess
GetModuleHandleW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GetCurrentProcessId
MoveFileExW
SetFilePointer
DeleteFileW
MultiByteToWideChar
CopyFileW
CreateProcessW
MoveFileW
WaitForSingleObject
GetTickCount
lstrlenW
GetStartupInfoW
LocalFree
WriteFile
CreateFileW
GetTempFileNameW
GetLastError
GetProcAddress
CreateDirectoryW
GetLongPathNameW
GetTempPathW
CloseHandle
SetEvent
QueryPerformanceCounter
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
VirtualAlloc
VirtualFree
HeapCreate
Sleep
LCMapStringW
LCMapStringA
LoadLibraryA
GetModuleFileNameA
GetStdHandle
GetCurrentThreadId
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
CreateEventW
FindResourceExW
LoadResource
LockResource
SizeofResource
FindResourceW
GetFileAttributesW
GetConsoleCP
IsValidCodePage
GetOEMCP
RaiseException
GetSystemTimeAsFileTime
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleA
ExitProcess
RtlUnwind
GetCPInfo

user32

UnregisterClassA

shell32

SHGetFolderPathW

rpcrt4

UuidToStringW
RpcStringFreeW
UuidCreate

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
RegDeleteKeyW
GetSidSubAuthorityCount
GetSidSubAuthority
LookupAccountSidW
GetTokenInformation
OpenProcessToken
ConvertSidToStringSidW
CopySid
LookupAccountNameW
RegCloseKey

ole32

CoInitialize
CoUninitialize
CoCreateInstance
StringFromGUID2

shlwapi

PathRemoveFileSpecW
SHDeleteKeyW

Sections

.text
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ardata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7739a7612ff51e3d44200f6c9a0270d2

Headers

File Characteristics

Imports

kernel32

user32

shell32

rpcrt4

version

advapi32

ole32

shlwapi

Sections

.text Size: 75KB - Virtual size: 75KB

.rdata Size: 26KB - Virtual size: 26KB

.data Size: 5KB - Virtual size: 13KB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.ardata Size: 60KB - Virtual size: 60KB

.text
Size: 75KB - Virtual size: 75KB

.rdata
Size: 26KB - Virtual size: 26KB

.data
Size: 5KB - Virtual size: 13KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.ardata
Size: 60KB - Virtual size: 60KB