84c2faca7f3ce49297dc1d6917c7f666607a4a0862cf0e7d8a9f54c5f1fc8ecb

General

Target

84c2faca7f3ce49297dc1d6917c7f666607a4a0862cf0e7d8a9f54c5f1fc8ecb
Size

210KB
MD5

8111273f0db4206d74a413f9a72afb90
SHA1

0402460cb465ea6e76635e040564578e6f8a6c8c
SHA256

84c2faca7f3ce49297dc1d6917c7f666607a4a0862cf0e7d8a9f54c5f1fc8ecb
SHA512

6027e5fa8f9c7a2edea4146942c18dd1cb894e9b25b9182cf9b16d47d77c005c353e2a4bd0b69cd261e72e2f2edd5ce792f6a3370d583a9cf064ec99195074b0
SSDEEP

6144:Jcy/b1o0I8K6dKbMP/55sZ0hKGKiX5u8twjBm:R/b1tI81IM3bU0AJx+wjE

Score

N/A

Malware Config

Signatures

Files

84c2faca7f3ce49297dc1d6917c7f666607a4a0862cf0e7d8a9f54c5f1fc8ecb
.exe windows x86

e513d6fc32b3eda1e4ff5a2762c889c7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

panmap

DllGetClassObject
DllCanUnloadNow

kernel32

GetVolumeInformationA
DeviceIoControl
QueryDosDeviceA
lstrlenA
LoadLibraryW
GetSystemTimeAsFileTime
CloseHandle
GetCurrentProcessId
GetTickCount
SetUnhandledExceptionFilter
HeapFree
GetLocalTime
LoadResource
lstrcpyA
FindResourceA
CreateFileA
GetProcessHeap
lstrcmpA
SetLastError
GlobalMemoryStatus
WideCharToMultiByte
GetModuleHandleW
LockResource
QueryPerformanceCounter
SystemTimeToFileTime
FreeResource
MultiByteToWideChar
HeapAlloc
GetEnvironmentStringsA
GetCurrentProcess

osuninst

GetUninstallImageSize
ProvideUiAlerts
IsUninstallImageValid
RemoveUninstallImage

pdh

PdhBindInputDataSourceW
PdhBrowseCountersA
PdhAddCounterA
PdhAdd009CounterA
PdhBindInputDataSourceA
PdhAddCounterW

user32

wsprintfA
CharNextA

advapi32

RegOpenKeyExA
RegCloseKey
RegOpenKeyW
RegQueryValueExA
RegQueryValueExW

pautoenr

CertAutoRemove
CertAutoEnrollment

Sections

.text
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 6.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e513d6fc32b3eda1e4ff5a2762c889c7

Headers

File Characteristics

Imports

panmap

kernel32

osuninst

pdh

user32

advapi32

pautoenr

Sections

.text Size: 77KB - Virtual size: 76KB

.rdata Size: 79KB - Virtual size: 79KB

.data Size: 49KB - Virtual size: 6.1MB

.rsrc Size: 1024B - Virtual size: 1000B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 77KB - Virtual size: 76KB

.rdata
Size: 79KB - Virtual size: 79KB

.data
Size: 49KB - Virtual size: 6.1MB

.rsrc
Size: 1024B - Virtual size: 1000B

.reloc
Size: 2KB - Virtual size: 1KB