8e4a0462f01aa8285e7dcf67959802f59f365473c326aa07158355d5debf8861

Sharing

Copy URL Twitter E-mail

General

Target

8e4a0462f01aa8285e7dcf67959802f59f365473c326aa07158355d5debf8861
Size

256KB
MD5

901a4ebe98c0ac739be142218e6b0240
SHA1

7191c0c4d68c265660abf628384f531a395c1e96
SHA256

8e4a0462f01aa8285e7dcf67959802f59f365473c326aa07158355d5debf8861
SHA512

d2a9a6d113b246c2b33d6e9fd99be739c870722925b050d1e6ad5f0406020d9a93967aa26455832a7205a72405f93b4f354fa5effdbedb7e04ec1962da177b46
SSDEEP

3072:r5GP0aUXtrMWzLwA9QmwGlR8KXlT+HiHWbInN0T7yw9lSOCqzUBt9vEf39b6:o8aUdrM80rmwrKV5nN0T7yIbG9g39b6

Score

N/A

Malware Config

Signatures

Files

8e4a0462f01aa8285e7dcf67959802f59f365473c326aa07158355d5debf8861
.exe windows x86

9df7814b5022384f7266d53034ad4bab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

acrodistdll

_DistBeginFileJob@16
_DistCancelJob@0
_DistInitialize@36
_DistMain@16
_DistTerminate@0

kernel32

lstrcatA
IsDBCSLeadByte
EnterCriticalSection
LeaveCriticalSection
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
GetModuleHandleA
DebugBreak
GetProfileStringA
FindClose
FindFirstFileA
GetFileAttributesA
GetTickCount
UnhandledExceptionFilter
GetStdHandle
WriteFile
GetStringTypeW
SetEnvironmentVariableA
CompareStringW
CompareStringA
CloseHandle
SetConsoleCtrlHandler
GetLocaleInfoW
SetStdHandle
lstrcpyA
lstrcpynA
InterlockedIncrement
GetCurrentThreadId
lstrcmpiA
lstrlenA
InterlockedDecrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetModuleFileNameA
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetLastError
FormatMessageA
LocalFree
LoadLibraryA
GetProcAddress
FreeLibrary
FlushFileBuffers
IsBadCodePtr
IsBadReadPtr
GetStringTypeA
GetTimeZoneInformation
SetFilePointer
SetUnhandledExceptionFilter
GetFileType
SetHandleCount
GetEnvironmentStringsW
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
LCMapStringW
LCMapStringA
TlsGetValue
TlsSetValue
FreeEnvironmentStringsW
GetEnvironmentStrings
ExitProcess
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
GetStartupInfoA
GetCommandLineA
RtlUnwind
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
FatalAppExitA
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
TerminateProcess
GetCurrentProcess
HeapSize
GetOEMCP
GetCPInfo
TlsAlloc
SetLastError
GetCurrentThread
TlsFree
FreeEnvironmentStringsA

user32

MessageBoxA
CharNextA
LoadStringA
PostMessageA
PostThreadMessageA
wsprintfA
DispatchMessageA
GetMessageA
TranslateMessage
UnregisterClassA

advapi32

RegCreateKeyExA
RegQueryValueExA
RegOpenKeyA
RegDeleteKeyA
RegQueryInfoKeyA
CloseServiceHandle
RegEnumKeyA
RegQueryValueA
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
RegEnumKeyExA
RegSetValueExA
RegOpenKeyExA
OpenServiceA
RegDeleteValueA
SetServiceStatus
RegisterEventSourceA
ReportEventA
DeregisterEventSource
ControlService
DeleteService
CreateServiceA
OpenSCManagerA
RegCloseKey

ole32

CoRevokeClassObject
CoRegisterClassObject
CoTaskMemAlloc
CoTaskMemRealloc
CoUninitialize
CoInitialize
CoCreateInstance
StringFromGUID2
CoTaskMemFree

oleaut32

VariantInit
SysStringLen
LoadRegTypeLi
VarUI4FromStr
RegisterTypeLi
LoadTypeLi
SysAllocString
SysFreeString
UnRegisterTypeLi
CreateErrorInfo
VariantClear
GetErrorInfo
VariantChangeType
SetErrorInfo

shlwapi

PathFindExtensionA

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9df7814b5022384f7266d53034ad4bab

Headers

File Characteristics

Imports

acrodistdll

kernel32

user32

advapi32

ole32

oleaut32

shlwapi

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 8KB - Virtual size: 10KB

.rsrc Size: 124KB - Virtual size: 124KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 8KB - Virtual size: 10KB

.rsrc
Size: 124KB - Virtual size: 124KB