0bf630b12651414f09c07698cd116892550c8d9cbd6bf206196b0a8a16a04f26

General

Target

0bf630b12651414f09c07698cd116892550c8d9cbd6bf206196b0a8a16a04f26
Size

38KB
MD5

4f90d731eaef39e40c2c01af5ffaa620
SHA1

87d575c7c4afdac6ccf64a7e1ecce163159149ae
SHA256

0bf630b12651414f09c07698cd116892550c8d9cbd6bf206196b0a8a16a04f26
SHA512

3f6af8b8b5d25c5ed4dff9b7b4d9ad40e5fccd69a5ad7985b8dcbfe94a97552823eb050f4c6174a5831bed33956506241a00198264e651b2627742056428427b
SSDEEP

768:LSpfuTkOc68lMAV8iN3K1HcbwwRSbs0DqotUPG6t4+:LiuTMhN3KNqpArUx4+

Score

N/A

Malware Config

Signatures

Files

0bf630b12651414f09c07698cd116892550c8d9cbd6bf206196b0a8a16a04f26
.exe windows x86

aff36b033636cc697fcd8eb7ef9be4a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
LoadLibraryA
WaitForSingleObject
ExitProcess
CreateProcessA
ReadFile
SetFilePointer
CreateFileA
OutputDebugStringA
CreateEventA
lstrcatA
GetSystemDirectoryA
Process32First
DeviceIoControl
GetModuleHandleA
RemoveDirectoryA
FindClose
GetProcAddress
DeleteFileA
FindFirstFileA
SetFileAttributesA
SetPriorityClass
GetShortPathNameA
GetEnvironmentVariableA
GetModuleFileNameA
CreateThread
SetEvent
CreateMutexA
LoadLibraryExA
CopyFileA
GetTempPathA
lstrlenA
lstrcpyA
Sleep
CloseHandle
ResetEvent
FreeLibrary
DuplicateHandle
SuspendThread
ResumeThread
CreateToolhelp32Snapshot
Process32Next
lstrcmpiA
GetCurrentProcess
OpenProcess
FindNextFileA
GetStartupInfoA

advapi32

GetTokenInformation
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyA
RegQueryValueExA
RegCloseKey
LookupPrivilegeValueA
AdjustTokenPrivileges
OpenProcessToken
LookupAccountSidA

shell32

StrStrIA
StrCmpNIA

ntdll

memmove
sprintf
strrchr
strcat
RtlUnwind
NtQuerySystemInformation
memset

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
??3@YAXPAX@Z
??2@YAPAXI@Z
_CxxThrowException
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
__CxxFrameHandler
??1type_info@@UAE@XZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

aff36b033636cc697fcd8eb7ef9be4a9

Headers

File Characteristics

Imports

kernel32

advapi32

shell32

ntdll

msvcrt

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 1024B - Virtual size: 940B

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 1024B - Virtual size: 940B