9b0ebd5cbbd6f6e2e2da4510e5b4b8f088493d1b92426294e876d4562ff95a1e

Sharing

Copy URL Twitter E-mail

General

Target

9b0ebd5cbbd6f6e2e2da4510e5b4b8f088493d1b92426294e876d4562ff95a1e
Size

120KB
MD5

62652fb61cee859fa78418a6264fbcb0
SHA1

4f7441621f746936b9fe26b8509194fc8e716ed6
SHA256

9b0ebd5cbbd6f6e2e2da4510e5b4b8f088493d1b92426294e876d4562ff95a1e
SHA512

446bb8c2690588317da0e160c24aae23a57bf8259f9ad3271b16fecdf79bf515640a1f3710ca3c074c49956bd9139fdf1d55670961095a3c2aac269f58c37a51
SSDEEP

3072:Zc32/xwg3QAp7nf1Vw76mqZWNhu+xkw4RsZ8lc:Zc32/xBQAp3mzNkIQR8F

Score

N/A

Malware Config

Signatures

Files

9b0ebd5cbbd6f6e2e2da4510e5b4b8f088493d1b92426294e876d4562ff95a1e
.exe windows x86

cbae92f618345a0beb9b9ebba922b023

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
DeleteCriticalSection
CreateEventA
InterlockedExchange
Sleep
GetTickCount
GetLocalTime
CreateThread
FreeLibrary
HeapAlloc
GetProcessHeap
lstrlenA
GetPrivateProfileSectionNamesA
lstrcatA
GetWindowsDirectoryA
MultiByteToWideChar
WideCharToMultiByte
lstrcmpA
GetPrivateProfileStringA
GetVersionExA
CreateDirectoryA
GetDriveTypeA
GetDiskFreeSpaceExA
GetVolumeInformationA
LocalFree
LocalAlloc
RemoveDirectoryA
CreateFileA
WriteFile
GetLastError
ExitProcess
GetCurrentProcess
LoadLibraryA
DeviceIoControl
CreateProcessA
TerminateThread
MoveFileA
DeleteFileA
GetModuleFileNameA
SetFilePointer
SetEvent
GlobalFree
GlobalUnlock
OutputDebugStringA
ReleaseMutex
OpenEventA
SetErrorMode
CreateMutexA
ResumeThread
SetThreadPriority
GetCurrentThread
SetPriorityClass
lstrcpyA
GetEnvironmentVariableA
GetShortPathNameA
CopyFileA
GetTempPathA
RaiseException
GetStartupInfoA
GetModuleHandleA
GetVersion
GetProcAddress

msvcrt

_except_handler3
strrchr
rename
atoi
strncmp
_errno
wcscpy
exit
_beginthreadex
calloc
??1type_info@@UAE@XZ
free
_XcptFilter
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
malloc
strchr
strncpy
sprintf
puts
putchar
rand
strstr
_ftol
_exit
ceil
_strnicmp
??2@YAPAXI@Z
??3@YAXPAX@Z
memmove
_CxxThrowException
__CxxFrameHandler

msvcp60

?_Xran@std@@YAXXZ
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Refcnt@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEAAEPBD@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB

netapi32

NetLocalGroupAddMembers
NetUserAdd

avicap32

capGetDriverDescriptionA

Sections

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cbae92f618345a0beb9b9ebba922b023

Headers

File Characteristics

Imports

kernel32

msvcrt

msvcp60

netapi32

avicap32

Sections

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 101KB - Virtual size: 104KB

.rsrc Size: 3KB - Virtual size: 3KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 101KB - Virtual size: 104KB

.rsrc
Size: 3KB - Virtual size: 3KB