18ef6c7848277df404f3906e3e2652084a714246bf198cbfcc9479ddbeff31d6

Sharing

Copy URL Twitter E-mail

General

Target

18ef6c7848277df404f3906e3e2652084a714246bf198cbfcc9479ddbeff31d6
Size

432KB
MD5

913b5ab9dd764b22f32af0289b6be2b5
SHA1

c11b04c7c74983031fd249112c8c1ba2d77972a2
SHA256

18ef6c7848277df404f3906e3e2652084a714246bf198cbfcc9479ddbeff31d6
SHA512

d4f75abfe65397cceacdbcd4cceceb3302239a4a3a8d7db1151dd3b584062c7b3acf6f333fa62c0dd537e0eae979161d2bef41b23d8d2fa0461b2fb950797e0c
SSDEEP

6144:aNA4f2+8DjgOCRdfYgRi4BEZR56Fm2QacwEHEOHOZ99nvRJQ3iZJTxpacy9cz8+z:SajgjLYgk4BvPEkOKJhpM8

Score

N/A

Malware Config

Signatures

Files

18ef6c7848277df404f3906e3e2652084a714246bf198cbfcc9479ddbeff31d6
.exe windows x86

5783afecbd1fdde7f6d8cb0dc3f9e27c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
GetCurrentProcessId
QueryPerformanceCounter
FormatMessageW
FindResourceExW
HeapFree
Sleep
MultiByteToWideChar
FindResourceW
CreateFileW
WideCharToMultiByte
QueryPerformanceFrequency
SetFileTime
GetTickCount
lstrlenW
lstrlenA
EnterCriticalSection
GetSystemDirectoryA
GetFileTime
Process32FirstW
LocalFree
GetModuleFileNameA
GetVersionExA
GetTempPathA
Process32NextW
SetErrorMode
CreateProcessA
GetTempFileNameA
CreateProcessW
GetWindowsDirectoryW
GetVolumeInformationA
CreateToolhelp32Snapshot
ReadFile
GetExitCodeThread
CreateThread
CreateEventW
TerminateThread
SetEvent
GetModuleFileNameW
WaitForMultipleObjects
GetLastError
LockResource
GetSystemInfo
LeaveCriticalSection
HeapAlloc
GetCurrentThreadId
WaitForSingleObject
SetProcessAffinityMask
CloseHandle
GetProcessHeap
HeapReAlloc
GetPriorityClass
GetCurrentProcess
DeleteCriticalSection
LoadResource
InitializeCriticalSection
GetFileSize
SizeofResource
SetStdHandle
SetEndOfFile
SetEnvironmentVariableW
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetConsoleMode
GetConsoleCP
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CreateFileA
GetExitCodeProcess
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LoadLibraryA
FlushFileBuffers
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
RaiseException
HeapDestroy
HeapSize
InterlockedIncrement
InterlockedDecrement
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualProtect
VirtualAlloc
GetProcAddress
GetModuleHandleA
VirtualQuery
DeleteFileW
GetSystemTimeAsFileTime
GetLocalTime
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
LCMapStringA
LCMapStringW
GetCPInfo
GetStringTypeA
GetStringTypeW
GetFileAttributesW
HeapCreate
VirtualFree
GetStdHandle
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetFileAttributesA
SetHandleCount
GetFileType
SetFilePointer

advapi32

CreateServiceW
ChangeServiceConfig2W
StartServiceW
QueryServiceStatusEx
OpenSCManagerW
CloseServiceHandle
RegisterServiceCtrlHandlerW
SetServiceStatus
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
StartServiceCtrlDispatcherW

ole32

CLSIDFromProgID
CoCreateInstance
CoInitialize
CoUninitialize
StringFromCLSID

ws2_32

freeaddrinfo
WSASetLastError
gethostbyname
WSASocketW
WSACreateEvent
closesocket
WSAEventSelect
WSAGetLastError
WSARecv
WSAStartup
WSAResetEvent
WSASend
WSAEnumNetworkEvents
WSACloseEvent
WSASetEvent
WSACleanup
getaddrinfo
WSAGetOverlappedResult
WSAConnect

user32

UnregisterClassA

Sections

.text
Size: 348KB - Virtual size: 346KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5783afecbd1fdde7f6d8cb0dc3f9e27c

Headers

File Characteristics

Imports

kernel32

advapi32

ole32

ws2_32

user32

Sections

.text Size: 348KB - Virtual size: 346KB

.rdata Size: 68KB - Virtual size: 65KB

.data Size: 8KB - Virtual size: 15KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 348KB - Virtual size: 346KB

.rdata
Size: 68KB - Virtual size: 65KB

.data
Size: 8KB - Virtual size: 15KB

.rsrc
Size: 4KB - Virtual size: 1KB