dece80ea1e8843901845b7e3dd8d73ce1edff0e274a71ae96c67f140685b5d5b

Sharing

Copy URL Twitter E-mail

General

Target

dece80ea1e8843901845b7e3dd8d73ce1edff0e274a71ae96c67f140685b5d5b
Size

687KB
MD5

74f411ee1c3b4eb0e8b4fd98f27b4b10
SHA1

a8f73ea22c8787d2e3ac2d1887d32aed83c68bd9
SHA256

dece80ea1e8843901845b7e3dd8d73ce1edff0e274a71ae96c67f140685b5d5b
SHA512

7312a6d490cbafec92fe454f59a1527f3763d6b9df4d4ee8cb27dea29d7ae976e2afdf2c4cce7813400a8c2f3be477be37e62ae60302cf295a4413c0cdfbba99
SSDEEP

12288:JISyfbnldLy+lAsGAGBfNlToK8HR0aIC8++S06QcTzhg0CgA:JAnlpy+lAsGJNl1CUS/dbA

Score

N/A

Malware Config

Signatures

Files

dece80ea1e8843901845b7e3dd8d73ce1edff0e274a71ae96c67f140685b5d5b
.exe windows x64

1bc9b3366fced86f326e701e88a24ce4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetDeviceInstanceIdW
CM_Get_Next_Res_Des
CM_Get_DevNode_Status
CM_Get_First_Log_Conf
CM_Free_Res_Des_Handle
CM_Get_Device_IDW
SetupDiGetDeviceInterfaceDetailW
CM_Get_Parent
CM_Get_Res_Des_Data_Size
SetupDiGetDeviceRegistryPropertyW
SetupDiEnumDeviceInterfaces
CM_Get_Res_Des_Data
SetupDiGetClassDevsW

winmm

timeBeginPeriod
timeEndPeriod

kernel32

FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
LoadLibraryA
GetLastError
SizeofResource
CloseHandle
FindResourceExW
DeviceIoControl
FindResourceW
CreateFileW
GetExitCodeThread
LoadResource
MultiByteToWideChar
RaiseException
WaitForSingleObject
CreateEventW
SetEvent
CreateThread
WaitForMultipleObjects
InitializeCriticalSection
DeleteCriticalSection
Sleep
LocalAlloc
CreateWaitableTimerW
EnterCriticalSection
SetWaitableTimer
LeaveCriticalSection
LocalFree
GetConsoleMode
GetConsoleCP
SetFilePointer
lstrlenA
GetStartupInfoA
QueryPerformanceCounter
LockResource
GetACP
GetStringTypeW
GetStringTypeA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
GetModuleFileNameW
GetLocaleInfoA
GetThreadLocale
RtlUnwindEx
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetCPInfo
GetOEMCP
IsValidCodePage
GetModuleHandleA
GetProcAddress
FlsGetValue
FlsSetValue
TlsFree
FlsFree
SetLastError
GetCurrentThreadId
FlsAlloc
RtlPcToFileHeader
HeapSetInformation
HeapCreate
LCMapStringA
WideCharToMultiByte
LCMapStringW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetTickCount

user32

RegisterDeviceNotificationW
UnregisterDeviceNotification
UnregisterClassA

advapi32

RegisterServiceCtrlHandlerExW
StartServiceCtrlDispatcherW
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
SetServiceStatus

ole32

StringFromGUID2
CoSetProxyBlanket
CoUninitialize
CoCreateInstance
CoInitializeEx
CoInitializeSecurity

oleaut32

VariantInit
SafeArrayUnaccessData
VariantClear
SysAllocString
VariantChangeType
SysFreeString
SafeArrayAccessData

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 508KB - Virtual size: 1.8MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1bc9b3366fced86f326e701e88a24ce4

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

winmm

kernel32

user32

advapi32

ole32

oleaut32

Sections

.text Size: 128KB - Virtual size: 127KB

.rdata Size: 35KB - Virtual size: 34KB

.data Size: 6KB - Virtual size: 17KB

.pdata Size: 7KB - Virtual size: 7KB

.rsrc Size: 1KB - Virtual size: 1KB

.vmp0 Size: 508KB - Virtual size: 1.8MB

.text
Size: 128KB - Virtual size: 127KB

.rdata
Size: 35KB - Virtual size: 34KB

.data
Size: 6KB - Virtual size: 17KB

.pdata
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 1KB - Virtual size: 1KB

.vmp0
Size: 508KB - Virtual size: 1.8MB