0f92d8955a651c9e5a17ad3154ab39585faffa614c8b81ba55d95178a0658966

Sharing

Copy URL Twitter E-mail

General

Target

0f92d8955a651c9e5a17ad3154ab39585faffa614c8b81ba55d95178a0658966
Size

318KB
MD5

83d914e52ce2f453e323e05e8d34c7b0
SHA1

234eae71d2dcef2f2c9c6f8bc8446b0fb3229dc0
SHA256

0f92d8955a651c9e5a17ad3154ab39585faffa614c8b81ba55d95178a0658966
SHA512

5d4e98a0cae06345d8267316196f841f7afdffcdb2851c59a1ea91b18e165f4c11318cd725dd56a3846b43c8510126d570d781b7f7c949807bde54299f9c40aa
SSDEEP

6144:MsB10oltnbFXxBZfqLqokZaTiSBpa2u8sZL94G0tidFp2mEq3Lk:T/Xx3fqNTip58sb8IdXzk

Score

N/A

Malware Config

Signatures

Files

0f92d8955a651c9e5a17ad3154ab39585faffa614c8b81ba55d95178a0658966
.exe windows x86

03aed996a92c272f0bc5eaf11d3e1dd2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryW
OutputDebugStringW
GetModuleFileNameW
GlobalMemoryStatus
GetLocalTime
QueryPerformanceCounter
lstrcmpW
GetModuleHandleW
MultiByteToWideChar
CloseHandle
DeviceIoControl
SuspendThread
SetEvent
OpenSemaphoreW
GetStartupInfoW
FormatMessageW
lstrcatA
lstrcmpA
CreateFileW
GetTimeFormatW
GetDateFormatW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetLastError
GetFullPathNameW
ExpandEnvironmentStringsW
GetPrivateProfileStringW
FindFirstFileW
GetSystemInfo

user32

FindWindowA
wsprintfA
GetSystemMetrics
SystemParametersInfoA
IntersectRect
ReleaseDC
OffsetRect
EnumDisplaySettingsW
FindWindowW
LoadStringW
CharLowerBuffW
CharNextW

advapi32

QueryServiceStatus
RegOpenKeyExW
RegSetValueExW
OpenSCManagerW
QueryServiceConfigW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
CloseServiceHandle
RegQueryValueExW

ole32

CoInitialize
CoTaskMemFree

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

msvcrt

wcsrchr
swscanf
wcsstr
wcsncmp
towupper
iswalpha
towlower
malloc
realloc
wcschr

shlwapi

PathFindExtensionA
PathCombineA

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupDiEnumDeviceInfo

winmm

mmioDescend
mmioOpenW
waveOutGetDevCapsW
mmioRead
mmioClose

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 337KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

03aed996a92c272f0bc5eaf11d3e1dd2

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

version

msvcrt

shlwapi

setupapi

winmm

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 20KB - Virtual size: 337KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 20KB - Virtual size: 337KB

.rsrc
Size: 40KB - Virtual size: 39KB