f8dc2c1a9fe61f474d2e9b9ef6b10a9edcb44e8a990139be66e499949095c91f

Sharing

Copy URL Twitter E-mail

General

Target

f8dc2c1a9fe61f474d2e9b9ef6b10a9edcb44e8a990139be66e499949095c91f
Size

224KB
MD5

5508c1bceda566b426542bba6b4d2a0b
SHA1

9a364d253d03394a27bee32baf17f05557e567d4
SHA256

f8dc2c1a9fe61f474d2e9b9ef6b10a9edcb44e8a990139be66e499949095c91f
SHA512

a3aed6fbe724e541bd6c100263af5062535c9be23747ed275beedb2fa4cb75f7ade8c5335e2f0ca997728210e51b5139d2e04a01c3d37bc4f4780128793678ed
SSDEEP

3072:j4x0njdsHL1fD6+1S4aRCES99Voq0Lb7sfBhZiBHgr9Uerm+79kfEOcv2T/3oIFw:5aJfGUS4uY07MBiWrqw9kc5BIF

Score

N/A

Malware Config

Signatures

Files

f8dc2c1a9fe61f474d2e9b9ef6b10a9edcb44e8a990139be66e499949095c91f
.exe windows x86

866d00da7442a779bd6253b026f0d174

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
lstrcpyA
DeleteCriticalSection
lstrcatA
lstrcpynA
InitializeCriticalSection
IsDBCSLeadByte
LoadResource
LoadLibraryExA
FindResourceA
GetShortPathNameA
SizeofResource
GetModuleHandleA
FreeLibrary
LoadLibraryA
GetProcAddress
lstrcmpiA
lstrlenA
GetCommandLineA
InterlockedDecrement
CreateDirectoryA
GetCurrentThreadId
lstrlenW
GetModuleFileNameA
MultiByteToWideChar
GetCurrentThread
WideCharToMultiByte
GetVersionExA
GetLastError
GetCurrentProcess
CloseHandle
LocalFree
LCMapStringW
RaiseException
GetStartupInfoA
GetStringTypeA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
SetEnvironmentVariableA
FormatMessageA
GetLocaleInfoW
SetEndOfFile
CreateFileA
GetOEMCP
GetACP
ReadFile
SetStdHandle
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
CompareStringA
GetCPInfo
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FlushFileBuffers
Sleep
InterlockedExchange
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapFree
HeapAlloc
HeapReAlloc
GetFileType
GetStdHandle
GetVersion
ExitProcess
LCMapStringA
SetHandleCount
HeapSize
TerminateProcess
CompareStringW
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
WriteFile
SetFilePointer
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr

user32

ExitWindowsEx
CharNextA
PostThreadMessageA
DispatchMessageA
GetMessageA
LoadStringA
MessageBoxA

advapi32

RegDeleteKeyA
StartServiceCtrlDispatcherA
RegCreateKeyExA
DeleteService
CreateServiceA
ControlService
LookupPrivilegeValueA
RegQueryValueExA
StartServiceA
SetServiceStatus
RegisterServiceCtrlHandlerA
RegCloseKey
ReportEventA
DeregisterEventSource
RegisterEventSourceA
OpenServiceA
CloseServiceHandle
OpenSCManagerA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
OpenProcessToken
AdjustTokenPrivileges
OpenThreadToken
EqualSid
RegEnumKeyExA
GetTokenInformation
RegEnumValueA
SetSecurityDescriptorDacl
RegQueryInfoKeyA
CopySid
GetLengthSid
SetSecurityDescriptorGroup
InitializeSecurityDescriptor
SetSecurityDescriptorOwner

ole32

CoTaskMemAlloc
CoCreateInstance
CoRevokeClassObject
CoRegisterClassObject
CoTaskMemRealloc
CoTaskMemFree
CoInitialize
CoInitializeSecurity
CoUninitialize
CoImpersonateClient
CoRevertToSelf

oleaut32

SysStringLen
LoadRegTypeLi
RegisterTypeLi
LoadTypeLi
SysAllocString
VarUI4FromStr
SysAllocStringLen
SysFreeString

Sections

.text
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

866d00da7442a779bd6253b026f0d174

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

Sections

.text Size: 140KB - Virtual size: 140KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 20KB - Virtual size: 24KB

.rsrc Size: 36KB - Virtual size: 36KB

.text
Size: 140KB - Virtual size: 140KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 20KB - Virtual size: 24KB

.rsrc
Size: 36KB - Virtual size: 36KB