ecf55f571260e76c43b9269b169bbb40957a2250b2bbc21ec6030e539a381bd1

Sharing

Copy URL

Twitter E-mail

General

Target

ecf55f571260e76c43b9269b169bbb40957a2250b2bbc21ec6030e539a381bd1
Size

837KB
MD5

1b00f44bf93b231fe0b821b8e0ea4600
SHA1

908d4519deb69181b8e9fbbf1a0d2b78d18a68ae
SHA256

ecf55f571260e76c43b9269b169bbb40957a2250b2bbc21ec6030e539a381bd1
SHA512

6ef3f79aec0f029cdb9152f1d4ddba4a4754917269602c7438e73d244ef35cfe56b40eeccb6d21f6c2d12084dfb007b995da1ccacaf03ce382fe31e9ce1d0e57
SSDEEP

6144:Aryx/TLLJ9UogjOXziTJYoKw0QRuEFe+A5NP5Ku1bMS:Aryx/D7gjOXuTJT0QR9roNd11

Score

N/A

Malware Config

Signatures

Files

ecf55f571260e76c43b9269b169bbb40957a2250b2bbc21ec6030e539a381bd1
.exe windows x86

9a2180d2429fda75f1e8c2cc7803003f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

AddAccessAllowedAce
AllocateAndInitializeSid
CryptSetProviderW
EqualSid
FreeSid
GetAce
GetLengthSid
InitializeAcl
InitializeSecurityDescriptor
ObjectCloseAuditAlarmA
RegCloseKey
RegCreateKeyExA
RegCreateKeyExW
RegDeleteKeyA
RegEnumKeyA
RegEnumKeyExA
RegEnumValueA
RegOpenKeyExA
RegOpenKeyExW
RegQueryInfoKeyA
RegQueryValueExA
RegSetKeySecurity
RegSetValueExA
RegSetValueExW
SetSecurityDescriptorDacl
AdjustTokenPrivileges
DuplicateTokenEx
GetLocalManagedApplications
IsValidSid
OpenProcessToken
RegUnLoadKeyW
SetThreadToken

kernel32

GetCurrentProcess
GetExitCodeThread
GetProcAddress
IsProcessorFeaturePresent
LoadLibraryA
Process32First
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
BindIoCompletionCallback
CreateTapePartition
FindResourceA
FreeLibrary
FreeResource
GetConsoleAliasExesA
GetHandleInformation
GetProcessTimes
GetVersionExA
LoadResource
LocalAlloc
LocalFree
LockResource
MultiByteToWideChar
SizeofResource
WideCharToMultiByte
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA
lstrlenW
VirtualAlloc
CloseHandle
CompareStringW
CreateEventW
CreateThread
EnumCalendarInfoA
FindResourceW
FormatMessageW
FreeLibraryAndExitThread
GetPrivateProfileIntW
GetSystemDirectoryW
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsBadStringPtrA
LoadLibraryW
SetEvent
SetFilePointer
TlsGetValue
TlsSetValue
WaitForSingleObject
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
InterlockedCompareExchange
QueryPerformanceCounter
Sleep
GetTimeFormatA
GetDateFormatA
GetLocaleInfoW
ExitThread
GetLastError
ResumeThread
HeapFree
HeapAlloc
GetModuleHandleW
ExitProcess
HeapReAlloc
GetCommandLineA
GetStartupInfoA
RaiseException
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsFree
SetLastError
GetCurrentThread
GetTimeZoneInformation
GetModuleHandleA
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
SetStdHandle
EnterCriticalSection
LeaveCriticalSection
HeapSize
HeapCreate
HeapDestroy
VirtualFree
FatalAppExitA
WriteFile
GetModuleFileNameA
SetConsoleCtrlHandler
InitializeCriticalSectionAndSpinCount
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
RtlUnwind
GetConsoleCP
GetConsoleMode
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
CompareStringA
SetEnvironmentVariableA
CreateFileA

ole32

CoInitialize
CLSIDFromString
ReleaseStgMedium
IsEqualGUID
DllGetClassObjectWOW
CoUninitialize
CoCreateInstance
CoGetCurrentProcess

oleaut32

SafeArrayDestroy
VarUI2FromDisp
VarCyInt

Sections

.text
Size: 231KB - Virtual size: 230KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 338KB - Virtual size: 338KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 264KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9a2180d2429fda75f1e8c2cc7803003f

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

ole32

oleaut32

Sections

.text Size: 231KB - Virtual size: 230KB

.rdata Size: 338KB - Virtual size: 338KB

.data Size: 264KB - Virtual size: 276KB

.text
Size: 231KB - Virtual size: 230KB

.rdata
Size: 338KB - Virtual size: 338KB

.data
Size: 264KB - Virtual size: 276KB