ede3c99583f5b388fecccde748d2edd92d3edb802a4e7cbec5765ac8feafd779

Sharing

Copy URL

Twitter E-mail

General

Target

ede3c99583f5b388fecccde748d2edd92d3edb802a4e7cbec5765ac8feafd779
Size

106KB
MD5

52b4b162e131008c14524c415ea27023
SHA1

d5f3f94e82be6fe886dcf36fc8c2a6a0d009d729
SHA256

ede3c99583f5b388fecccde748d2edd92d3edb802a4e7cbec5765ac8feafd779
SHA512

6cdd626a2156fd8e51e5842e412c5f4c1a31e51362c7f77969efba6ed500bb1bc1013bcd6a6d548dd5ffbdb5e80979f8f6b5f4ca941dcca3d2e8107e9ec8cafd
SSDEEP

1536:BCCCfJVTBMjkwHziEApcqMXWy6vF4O7WkAVt98JxtaRx8kh3n5xXg:BOBBMjkEGEAaqxy6tRWzVX8haE2n5pg

Score

N/A

Malware Config

Signatures

Files

ede3c99583f5b388fecccde748d2edd92d3edb802a4e7cbec5765ac8feafd779
.exe windows x64

ec3460d0ed22d5c758ca30873d8c198c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

advapi32

LookupPrivilegeValueW
OpenProcessToken
AdjustTokenPrivileges
InitiateSystemShutdownExW
RegQueryValueExW
RegCloseKey
RegSetValueExW
CloseServiceHandle
OpenSCManagerW
RegDeleteValueW
OpenServiceW

kernel32

LocalFree
GetCurrentProcess
FormatMessageW
lstrlenW
GetLastError
CloseHandle
FreeLibrary
GetDateFormatW
FileTimeToSystemTime
GetFileAttributesW
GetFullPathNameW
GetWindowsDirectoryW
GetProcAddress
FindFirstFileW
FindClose
LoadLibraryW
FindNextFileW
Sleep
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetModuleHandleW
SetUnhandledExceptionFilter
UnhandledExceptionFilter

msvcrt

??2@YAPEAX_K@Z
wcschr
_wcsicmp
_wcsnicmp
wcsrchr
towlower
fputs
iswalpha
?terminate@@YAXXZ
memset
__set_app_type
_fmode
_commode
__setusermatherr
_amsg_exit
_initterm
exit
_cexit
_exit
_XcptFilter
__C_specific_handler
__wgetmainargs
wprintf
fputws
??3@YAXPEAX@Z
towupper
__iob_func

ntdll

RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind

ole32

CLSIDFromString

setupapi

SetupDiOpenDevRegKey
SetupDiGetDeviceRegistryPropertyW
SetupDiDestroyDeviceInfoList
SetupDiBuildClassInfoListExW
SetupDiSetClassInstallParamsW
SetupDiCreateDeviceInfoW
SetupDiClassNameFromGuidExW
CM_Reenumerate_DevNode_Ex
SetupDiCreateDeviceInfoList
SetupCopyOEMInfW
SetupDiSetDeviceRegistryPropertyW
CM_Connect_MachineW
SetupDiGetINFClassW
CM_Disconnect_Machine
CM_Locate_DevNode_ExW
CM_Get_DevNode_Status_Ex
SetupCloseFileQueue
SetupDiGetClassDescriptionExW
SetupDiGetDriverInstallParamsW
SetupDiBuildDriverInfoList
CM_Get_Res_Des_Data_Ex
SetupDiGetDeviceInstallParamsW
SetupDiOpenClassRegKeyExW
SetupCloseInfFile
SetupDiGetClassDevsExW
SetupOpenFileQueue
SetupDiSetSelectedDriverW
SetupDiCallClassInstaller
SetupDiDestroyDriverInfoList
SetupOpenInfFileW
SetupGetStringFieldW
CM_Free_Res_Des_Handle
CM_Get_Res_Des_Data_Size_Ex
SetupDiEnumDriverInfoW
CM_Get_First_Log_Conf_Ex
CM_Free_Log_Conf_Handle
SetupScanFileQueueW
SetupDiSetDeviceInstallParamsW
SetupFindFirstLineW
CM_Get_Next_Res_Des_Ex
SetupDiGetDriverInfoDetailW
SetupDiClassGuidsFromNameExW
SetupDiOpenDeviceInfoW
CM_Get_Device_ID_ExW
SetupDiGetDeviceInfoListDetailW
SetupDiCreateDeviceInfoListExW
SetupDiEnumDeviceInfo

user32

CharPrevW
CharNextW
LoadStringW

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

eufuedq
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ec3460d0ed22d5c758ca30873d8c198c

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

msvcrt

ntdll

ole32

setupapi

user32

Sections

.text Size: 30KB - Virtual size: 30KB

.data Size: 2KB - Virtual size: 3KB

.pdata Size: 1024B - Virtual size: 852B

.rsrc Size: 44KB - Virtual size: 43KB

.reloc Size: 27KB - Virtual size: 28KB

eufuedq Size: - Virtual size: 4KB

.text
Size: 30KB - Virtual size: 30KB

.data
Size: 2KB - Virtual size: 3KB

.pdata
Size: 1024B - Virtual size: 852B

.rsrc
Size: 44KB - Virtual size: 43KB

.reloc
Size: 27KB - Virtual size: 28KB

eufuedq
Size: - Virtual size: 4KB