7f7fd072c9d974e2425a8476a1767fd51fcafadca0590ea055d7206b9d919da9

Sharing

Copy URL Twitter E-mail

General

Target

7f7fd072c9d974e2425a8476a1767fd51fcafadca0590ea055d7206b9d919da9
Size

168KB
MD5

800eb37cc8ff261e4c287d6f4b64aff0
SHA1

be6fd17b71df3e4f144f5c1bc389a475d559f834
SHA256

7f7fd072c9d974e2425a8476a1767fd51fcafadca0590ea055d7206b9d919da9
SHA512

f436fd450507c9ec04917c3b27a5811b32005bf88e651245e49f79675a99387f150e52114d44c834c53ee91b3180c7cea3187e56e21acef855ff91eb750bbd23
SSDEEP

1536:ZOsdSoex3UGnUHw2Z/xOjASAGiRoTDTkBXbC6gCFubPT6UCQFgFkQo+3iYEl7st/:ZfktGBlFZX+rCQFio+3iVl7stageTsz

Score

N/A

Malware Config

Signatures

Files

7f7fd072c9d974e2425a8476a1767fd51fcafadca0590ea055d7206b9d919da9
.exe windows x86

41e17140f8398a9fafeca87e0c217146

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupCloseInfFile
SetupGetLineCountA
SetupGetStringFieldA
SetupGetLineTextA
SetupGetInfInformationA
SetupQueryInfVersionInformationA
SetupCopyOEMInfA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList
SetupDiOpenClassRegKey
SetupDiOpenDevRegKey
SetupDiGetDeviceRegistryPropertyA
SetupDiSetDeviceRegistryPropertyA
SetupDiClassGuidsFromNameA
SetupOpenInfFileA
SetupGetLineByIndexA

shlwapi

SHDeleteEmptyKeyA
SHDeleteKeyA
SHDeleteValueA

newdev

UpdateDriverForPlugAndPlayDevicesA

kernel32

VirtualAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
DeleteFileA
RtlUnwind
ExitProcess
WriteConsoleW
InterlockedExchange
MultiByteToWideChar
WideCharToMultiByte
GetLastError
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
GetProcAddress
LoadLibraryA
FreeLibrary
GetWindowsDirectoryA
LocalFree
FormatMessageA
CloseHandle
GetCurrentProcess
GetModuleFileNameA
GetCurrentDirectoryA
WaitForSingleObject
CreateFileA
Sleep
FindClose
FindNextFileA
RemoveDirectoryA
FindFirstFileA
SetFileAttributesA
GetVersionExA
GetCommandLineA
GetEnvironmentVariableA
InterlockedDecrement
CreateProcessA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
ExpandEnvironmentStringsA
TerminateProcess
GetCurrentThreadId
GetFileAttributesA
GetConsoleOutputCP
ReadFile
SetEndOfFile
SetStdHandle
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
GetModuleHandleA
FreeEnvironmentStringsW
GetStartupInfoA
VirtualFree
HeapCreate
WriteFile
GetStdHandle
SetHandleCount
GetFileType
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
WriteConsoleA
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
GetCPInfo
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
GetACP
GetLocaleInfoA
GetThreadLocale
RaiseException
HeapDestroy

user32

UnregisterClassA
WaitForInputIdle
SendMessageA
FindWindowA

advapi32

RegCreateKeyA
RegOpenKeyExA
RegQueryValueExA
RegDeleteValueA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
PrivilegeCheck
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

SHGetSpecialFolderPathA
ShellExecuteExA

ole32

CoCreateInstance
CoInitializeSecurity
CoInitializeEx
CoUninitialize

oleaut32

VariantInit
VariantClear
SysAllocString
SysFreeString

Sections

.text
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

41e17140f8398a9fafeca87e0c217146

Headers

File Characteristics

Imports

setupapi

shlwapi

newdev

kernel32

user32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 100KB - Virtual size: 96KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 8KB - Virtual size: 12KB

.rsrc Size: 28KB - Virtual size: 27KB

.text Size: 8KB - Virtual size: 4KB

.text
Size: 100KB - Virtual size: 96KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 28KB - Virtual size: 27KB

.text
Size: 8KB - Virtual size: 4KB