62c7e0afce480b561f4603d14960673f4216c4e6be9ae06b48c72a2137467461

Sharing

Copy URL

Twitter E-mail

General

Target

62c7e0afce480b561f4603d14960673f4216c4e6be9ae06b48c72a2137467461
Size

4.2MB
MD5

b9c6064844b35a7d70038d56c86c1f91
SHA1

25e23ea68a0db95f6c5ddd1a524d4d0163cf4d04
SHA256

62c7e0afce480b561f4603d14960673f4216c4e6be9ae06b48c72a2137467461
SHA512

c8fc4ae4afb57277bc3aa3dd9cae240c37208c3bd008d61d034aee33b0978848f9d30eec08a985e06b410c1473f9b3f12b4b9365f0cf0fd5b96e7fdd7204e15f
SSDEEP

98304:6J9jRt/P0ahSEwdKBaVHJj2ubEsEjMfDtPAEax9:6Jd9sESKB2subEsLtAE49

Score

N/A

Malware Config

Signatures

Files

62c7e0afce480b561f4603d14960673f4216c4e6be9ae06b48c72a2137467461
.exe windows x86

12065f6b7427417bee72fa39872bf459

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
OpenProcess
GetModuleFileNameW
FindResourceW
SizeofResource
LoadResource
LockResource
MoveFileW
GetTickCount
SetThreadPriority
SetDllDirectoryW
WaitForSingleObject
GetExitCodeThread
FreeResource
DeleteFileW
LocalFree
MultiByteToWideChar
InitializeCriticalSectionAndSpinCount
GetModuleHandleW
GetProcAddress
GetFileAttributesW
MoveFileExW
GetTempPathW
FindFirstFileW
CreateDirectoryW
CopyFileW
FindNextFileW
FindClose
RemoveDirectoryW
GetCurrentProcess
CreateToolhelp32Snapshot
Process32FirstW
lstrcmpiW
TerminateProcess
Process32NextW
SetEndOfFile
WriteConsoleW
SetStdHandle
LoadLibraryW
GetCurrentProcessId
GetCurrentThreadId
OutputDebugStringW
SetFileAttributesW
WriteFile
ReadFile
CloseHandle
CreateFileW
GetLastError
WideCharToMultiByte
GetVersionExW
ReadConsoleW
HeapReAlloc
GetOEMCP
GetACP
IsValidCodePage
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
FlushFileBuffers
SetEnvironmentVariableA
SetFilePointerEx
GetConsoleMode
GetConsoleCP
HeapSize
GetTimeZoneInformation
GetFileType
GetProcessHeap
GetStdHandle
GetModuleHandleExW
ExitProcess
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetStringTypeW
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
HeapAlloc
HeapFree
IsDebuggerPresent
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
GetCPInfo
CreateThread
ExitThread
LoadLibraryExW
GetCommandLineW
RaiseException
RtlUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
Sleep
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
CompareStringW
LCMapStringW
GetLocaleInfoW

advapi32

LookupPrivilegeValueW
RegDeleteValueW
RegCreateKeyExW
RegQueryValueExW
GetUserNameA
RegCloseKey
RegSetValueExW
RegOpenKeyExW
FreeSid
CheckTokenMembership
AllocateAndInitializeSid
OpenProcessToken
AdjustTokenPrivileges

shell32

ShellExecuteExW
SHCreateDirectoryExW
SHGetFolderPathW
SHFileOperationW
CommandLineToArgvW
ShellExecuteW

ole32

CoInitializeEx
CoUninitialize
PropVariantClear
CoCreateInstance
CoInitialize

oleaut32

SysFreeString
SysAllocString
SysStringLen

shlwapi

PathIsRelativeW
PathRemoveFileSpecW
SHStrDupW
StrStrIW
PathFindFileNameW
PathAppendW
PathFileExistsW
StrCmpW

Sections

.text
Size: 255KB - Virtual size: 255KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6.0MB - Virtual size: 6.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

12065f6b7427417bee72fa39872bf459

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

shell32

ole32

oleaut32

shlwapi

Sections

.text Size: 255KB - Virtual size: 255KB

.rdata Size: 65KB - Virtual size: 65KB

.data Size: 9KB - Virtual size: 26KB

.rsrc Size: 6.0MB - Virtual size: 6.0MB

.reloc Size: 11KB - Virtual size: 11KB

.text
Size: 255KB - Virtual size: 255KB

.rdata
Size: 65KB - Virtual size: 65KB

.data
Size: 9KB - Virtual size: 26KB

.rsrc
Size: 6.0MB - Virtual size: 6.0MB

.reloc
Size: 11KB - Virtual size: 11KB