b27149bb0ae78ab3801dfa6287626fcc1ee2062f310a80876ae62ce575f92a1c

Sharing

Copy URL Twitter E-mail

General

Target

b27149bb0ae78ab3801dfa6287626fcc1ee2062f310a80876ae62ce575f92a1c
Size

44KB
MD5

642d7bb41e173dbd94930b35ed6e73a0
SHA1

3531098632862218d85237999cd7031748ec1b45
SHA256

b27149bb0ae78ab3801dfa6287626fcc1ee2062f310a80876ae62ce575f92a1c
SHA512

22b3788d80332d51aaa1ee983da841f1404fc6d18fc4eed73ccc28959e5e10990628b666c0e216107c7ff2e11c74256f6bb572eea71979d7bbcfd8c1dc983361
SSDEEP

768:/9RSIFOW1GrpuHMnnGxkAsHICojvYg7xutTr/Sau4+Jj:VDOWUrpuHSnBAsv+vYg78wF

Score

N/A

Malware Config

Signatures

Files

b27149bb0ae78ab3801dfa6287626fcc1ee2062f310a80876ae62ce575f92a1c
.exe windows x86

3228141b08d95c46c3d83e6c1930ea6f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteKeyW
LookupAccountNameW
RegCreateKeyW
GetSecurityDescriptorDacl
GetTraceEnableFlags
RegNotifyChangeKeyValue
OpenSCManagerW
RegQueryInfoKeyW
CryptReleaseContext
RegCreateKeyExA
AllocateAndInitializeSid

msvcrt

_unlock
__p__fmode
mbstowcs
bsearch
towupper
_acmdln
__dllonexit
iswctype
_initterm
_stricmp

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoA

kernel32

VirtualFree
VirtualAlloc
FindNextFileW
LCMapStringA
GetModuleHandleW
GetCurrentThread
GetCurrentProcess
GetLastError
TlsAlloc
GetModuleHandleA
DebugBreak
GetCommandLineW
GetTickCount
GetStartupInfoA
CreateFileW
ExitProcess
GetProcessHeap

gdi32

SetViewportOrgEx
GetTextMetricsA
SetICMMode
OffsetRgn
DeleteMetaFile
CreateDCA
PlayMetaFile
GetPaletteEntries
GdiSetLastError
IntersectClipRect
CreateHalftonePalette

ole32

CoMarshalInterThreadInterfaceInStream
CoTaskMemFree
CLSIDFromProgID
CoCreateInstance

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3228141b08d95c46c3d83e6c1930ea6f

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

msvcrt

version

kernel32

gdi32

ole32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 7KB - Virtual size: 10KB

.rdata Size: 13KB - Virtual size: 42KB

.rdata Size: 11KB - Virtual size: 17KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 7KB - Virtual size: 10KB

.rdata
Size: 13KB - Virtual size: 42KB

.rdata
Size: 11KB - Virtual size: 17KB

.rsrc
Size: 4KB - Virtual size: 4KB