7f1e7a80f701c394fe03c9f0184392bd69610c55a716703f13fa22485e7b18b3

Sharing

Copy URL Twitter E-mail

General

Target

7f1e7a80f701c394fe03c9f0184392bd69610c55a716703f13fa22485e7b18b3
Size

153KB
MD5

8386fc46369a89af886524a7b893d23b
SHA1

038877c62b58e4dd70d336fc7a471bc2f7846786
SHA256

7f1e7a80f701c394fe03c9f0184392bd69610c55a716703f13fa22485e7b18b3
SHA512

f480cdedc3bf09c3bebaab8b0f3e6571120909a7af7b223339ea801d80e78fa2636c8bdab306692ccc541385524a70d5704e4c9ad5761a42049498b122143031
SSDEEP

3072:Urq0g1xa9xpvFuolFFT6688qiSkYin00qcG9:Ug14xpvFuolFRnTTEinfr

Score

N/A

Malware Config

Signatures

Files

7f1e7a80f701c394fe03c9f0184392bd69610c55a716703f13fa22485e7b18b3
.exe windows x86

a7be5cc808b380ce7080b1024d248abe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
SetWindowTextW
SetWindowLongW
SendMessageW
OffsetRect
IsWindowEnabled
GetWindowTextW
GetWindowLongW
GetThreadDesktop
GetParent
EnableWindow
EndDialog
DialogBoxParamW

setupapi

SetupOpenLog
SetupLogErrorW
SetupDiSetClassInstallParamsW
SetupDiOpenDevRegKey
SetupDiInstallDevice
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassInstallParamsW
SetupDiCreateDevRegKeyW
SetupCloseLog
CM_Create_DevNodeA
CMP_Init_Detection

kernel32

lstrcmpiW
VirtualProtect
VirtualFree
VirtualAlloc
VerifyVersionInfoW
UnhandledExceptionFilter
CloseHandle
CompareStringW
CreateFileW
DeviceIoControl
DisableThreadLibraryCalls
ExitProcess
GetComputerNameW
GetCurrentProcess
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
TerminateProcess
GetWindowsDirectoryW
LocalAlloc
MultiByteToWideChar
SetLastError
SetUnhandledExceptionFilter
GetTickCount

gdi32

CloseEnhMetaFile

advapi32

CreateServiceW
ConvertStringSecurityDescriptorToSecurityDescriptorW
ControlService
RegSetValueExW
RegSetKeySecurity
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegCloseKey
OpenServiceW
OpenSCManagerW
InitializeSid
CloseServiceHandle
ChangeServiceConfigW
AddAce

msvcrt

_vsnwprintf
_except_handler3
wcscmp

shell32

ShellExecuteW
SHEnumerateUnreadMailAccountsW

Exports

Exports

GetDllMajorVersion
IsPlatformWinNT
ReadPixels
ReplaceCharsW
StrToUintW
TextureKey

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a7be5cc808b380ce7080b1024d248abe

Headers

DLL Characteristics

File Characteristics

Imports

user32

setupapi

kernel32

gdi32

advapi32

msvcrt

shell32

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 35KB

.rdata Size: 68KB - Virtual size: 68KB

.data Size: 39KB - Virtual size: 39KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 36KB - Virtual size: 35KB

.rdata
Size: 68KB - Virtual size: 68KB

.data
Size: 39KB - Virtual size: 39KB

.rsrc
Size: 8KB - Virtual size: 7KB