11e77c363400546b0f8d966196d217315988540b611446312eb404be44d22115

Sharing

Copy URL

Twitter E-mail

General

Target

11e77c363400546b0f8d966196d217315988540b611446312eb404be44d22115
Size

497KB
MD5

716eb9587400ef5f26442869e25c99e0
SHA1

e7e9d8b5bfd88b61062246c30be6f021a1e00e6d
SHA256

11e77c363400546b0f8d966196d217315988540b611446312eb404be44d22115
SHA512

d1e61ae5c60f7d492b147c92aedb05489eeb6f4e351a1f38c6f8e257b50f0f30983ed115bae31ee9b38814b9b14042972fcf37d83cceaaa31edb6362a0ec6af7
SSDEEP

6144:SCsNak8/14UrPUsq4dPiVZ5PnZEVBfnfB6YUvIy7VcinnQcLtEVzPrMZlCsHBkP3:Dk8BPE4dP8ZJnZELp7QjnDtYwlHqE7wr

Score

N/A

Malware Config

Signatures

Files

11e77c363400546b0f8d966196d217315988540b611446312eb404be44d22115
.exe windows x86

95d418d2395bd04cce45d946a822918b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

powrprof

ReadGlobalPwrPolicy
GetPwrDiskSpindownRange
IsAdminOverrideActive
GetPwrCapabilities
SetActivePwrScheme
GetCurrentPowerPolicies
EnumPwrSchemes
CanUserWritePwrScheme
WriteGlobalPwrPolicy
ValidatePowerPolicies
WritePwrScheme
CallNtPowerInformation
GetActivePwrScheme
DeletePwrScheme

user32

SendDlgItemMessageW
BringWindowToTop
IsDlgButtonChecked
CharPrevW
LoadImageW
RegisterWindowMessageW
ExitWindowsEx
SetWindowTextW
KillTimer
FindWindowW
CheckDlgButton
GetWindowTextW
DialogBoxParamW
SendMessageW
InvalidateRect
SetWindowPos
GetDlgItemTextW
GetWindowLongW
SetWindowLongW
GetDlgItemInt
CheckRadioButton
CallWindowProcW
CharNextW
SetTimer
SystemParametersInfoW
GetDlgItem
EnableWindow
UnregisterDeviceNotification
SetDlgItemTextW
GetParent
WinHelpW
SetDlgItemInt
RegisterDeviceNotificationW
LoadIconW
wsprintfW
ShowWindow
MessageBoxW
GetIconInfo
DestroyWindow
LoadStringW
EndDialog
SetFocus

ntdll

NtPowerInformation
RtlNtStatusToDosError

advapi32

StartServiceW
RegDeleteValueW
RegQueryValueExW
RegEnumValueW
ChangeServiceConfigW
CloseServiceHandle
RegCloseKey
ControlService
QueryServiceStatus
RegCreateKeyExW
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW
OpenSCManagerW
UnlockServiceDatabase
OpenProcessToken
LockServiceDatabase
GetTokenInformation
OpenServiceW
RegOpenKeyExW
AdjustTokenPrivileges

kernel32

GetCurrentProcessId
QueryPerformanceCounter
LoadLibraryA
GetSystemDefaultLangID
GlobalMemoryStatusEx
GetModuleFileNameW
GetProcAddress
GetSystemInfo
SetUnhandledExceptionFilter
LocalAlloc
ExpandEnvironmentStringsW
SetLastError
GetWindowsDirectoryW
lstrcatW
GetCurrentProcess
OutputDebugStringA
GetLastError
GetTickCount
FormatMessageW
lstrcpynW
GetSystemTimeAsFileTime
GetUserDefaultLCID
GetVersionExW
lstrcpyW
GetSystemDirectoryW
GetLocaleInfoW
lstrlenW
lstrcmpiW
GetDiskFreeSpaceW
LocalFree
CloseHandle
FreeLibrary

msvcrt

_itow
wcschr
swscanf
_except_handler3
wcscmp
wcslen
wcscpy
wcscat
_wcsicmp

ole32

CoInitialize
CoCreateInstance
CoUninitialize
CoTaskMemFree

gdi32

GetObjectW
DeleteObject

setupapi

SetupDiChangeState
CM_Get_HW_Prof_Flags_ExW
SetupDiDeleteDeviceInfo
SetupDiSetDeviceInstallParamsW
CM_Get_Hardware_Profile_Info_ExW
SetupDiGetClassDevsExW
SetupDiGetDeviceRegistryPropertyW
SetupDiSetClassInstallParamsW
SetupDiDestroyDeviceInfoList
CM_Get_Device_ID_ExW
SetupDiGetDeviceInstallParamsW
SetupDiCallClassInstaller

shell32

ShellExecuteW

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 431KB - Virtual size: 431KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

95d418d2395bd04cce45d946a822918b

Headers

File Characteristics

Imports

powrprof

user32

ntdll

advapi32

kernel32

msvcrt

ole32

gdi32

setupapi

shell32

Sections

.text Size: 30KB - Virtual size: 29KB

.rdata Size: 23KB - Virtual size: 23KB

.data Size: 10KB - Virtual size: 9KB

.rsrc Size: 431KB - Virtual size: 431KB

.text
Size: 30KB - Virtual size: 29KB

.rdata
Size: 23KB - Virtual size: 23KB

.data
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 431KB - Virtual size: 431KB