345ebffe8005deb7b3473d0b62c291440fb35e1d3233a89d425b597425d5bea3

Sharing

Copy URL Twitter E-mail

General

Target

345ebffe8005deb7b3473d0b62c291440fb35e1d3233a89d425b597425d5bea3
Size

124KB
MD5

773a04997f4221d0405804cba3e39719
SHA1

d937b9b650bb3beb8829aa0825298e562a6d7c57
SHA256

345ebffe8005deb7b3473d0b62c291440fb35e1d3233a89d425b597425d5bea3
SHA512

9e2438fa2d99b59a4d2c94fc8a82bf9a4e32f36db9b599cf8a6f33a86462ed7b02ef1de19f6980729f8f7ca56ce3e965e3420767dd02287423d2032f0e48647e
SSDEEP

1536:RzppZk+cCKtuipXV33wF+HE5gzbxcthr22rSCzQ365Vjw5K1x:bpJcPui0FQwQb2tE2+p6Ljw5K1x

Score

N/A

Malware Config

Signatures

Files

345ebffe8005deb7b3473d0b62c291440fb35e1d3233a89d425b597425d5bea3
.exe windows x86

27238c50316793456b7e4d3c77dbec3d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

crypt32

CertGetNameStringW
CertCloseStore
CertFreeCertificateContext
CertFindCertificateInStore
CryptMsgGetParam
CryptQueryObject
CryptMsgClose

kernel32

LockResource
LoadResource
ReadFile
FindResourceExW
MultiByteToWideChar
CreateDirectoryW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrcatW
lstrlenW
GetConsoleOutputCP
WriteConsoleA
DisconnectNamedPipe
SizeofResource
LoadLibraryW
GetProcAddress
FreeLibrary
DeviceIoControl
GetModuleFileNameW
CreateFileW
WaitNamedPipeW
WriteFile
FlushFileBuffers
WideCharToMultiByte
SetEvent
WaitForSingleObject
CloseHandle
GetLastError
LocalAlloc
LocalFree
lstrcpyW
CreateThread
CreateEventW
CreateNamedPipeW
ResetEvent
ConnectNamedPipe
SetEnvironmentVariableA
FindResourceW
WriteConsoleW
CompareStringW
CompareStringA
SetEndOfFile
CreateFileA
SetFilePointer
SetStdHandle
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetSystemTimeAsFileTime
RtlUnwind
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetOEMCP
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapCreate
VirtualFree
VirtualAlloc
ExitProcess
GetStdHandle
GetModuleFileNameA
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
Sleep
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
LoadLibraryA

user32

wsprintfW
UnregisterClassA

advapi32

RegisterServiceCtrlHandlerExW
StartServiceCtrlDispatcherW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetServiceStatus
StartServiceW
ControlService
OpenServiceW
DeleteService
OpenSCManagerW
CreateServiceW
CloseServiceHandle
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegDeleteValueW
CryptDecrypt
CryptAcquireContextW
CryptCreateHash
CryptReleaseContext
CryptHashData
CryptDestroyHash
CryptDeriveKey
CryptEncrypt
CryptDestroyKey
RegSetValueExW

ole32

CoSetProxyBlanket
CoCreateInstance
CoUninitialize
CoInitializeEx

oleaut32

VariantInit
SysFreeString
VariantClear
SysAllocString

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27238c50316793456b7e4d3c77dbec3d

Headers

File Characteristics

Imports

crypt32

kernel32

user32

advapi32

ole32

oleaut32

Sections

.text Size: 88KB - Virtual size: 84KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 8KB - Virtual size: 16KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 88KB - Virtual size: 84KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 8KB - Virtual size: 16KB

.rsrc
Size: 4KB - Virtual size: 2KB