6773643865d0b9c85917f3014448539c9db65cead359b0228fc29a12af7a5788

Sharing

Copy URL Twitter E-mail

General

Target

6773643865d0b9c85917f3014448539c9db65cead359b0228fc29a12af7a5788
Size

275KB
MD5

9276a60333f7cb615517c5e8f56c6a30
SHA1

097348380ca0420692cb298dd934a91799b7c728
SHA256

6773643865d0b9c85917f3014448539c9db65cead359b0228fc29a12af7a5788
SHA512

e4c802fac275f9b92a27816e7af2f615c61a26bcc12b004af404fe8194bb880753c8ce4265ec12d83b05728857e70b7ff7f6e0224cbdf3b7950473f6c1ac7ade
SSDEEP

6144:id/nQxBxkbJ3EydmxWF+H1YQq4eZaO2x4ANbYb3WeNeWXZ2uK94KO0Q:i1QJCJ3AWUb2g+ibamXWX0ROT

Score

N/A

Malware Config

Signatures

Files

6773643865d0b9c85917f3014448539c9db65cead359b0228fc29a12af7a5788
.exe windows x86

6b625adc18a7ba2afd4057e73b81819a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
OpenFileMappingA
FindNextFileA
RemoveDirectoryA
GetProcAddress
ReadFile
lstrcpyA
CreateDirectoryA
CreateMutexA
ReleaseSemaphore
GetUserDefaultLangID
GetTickCount
QueryPerformanceCounter
lstrcmpA
LCMapStringW
CloseHandle
GetCurrentProcessId
lstrlenA
UnmapViewOfFile
WaitForSingleObject
InterlockedDecrement
CreateThread
FindClose
GetUserDefaultLCID
CreateFileA
GetEnvironmentStringsW
VirtualFree
WaitForMultipleObjects
OutputDebugStringA
OpenMutexA
MapViewOfFile
GetSystemInfo
EnterCriticalSection
CreateSemaphoreA
GetCPInfo
GlobalAlloc
GetFileSize
GetLastError
GlobalFree
GetDiskFreeSpaceA
GetEnvironmentStringsA
CreateEventA
SetEndOfFile
OpenSemaphoreA
GetSystemDefaultLangID
GetOEMCP
ReleaseMutex
SetFilePointer
GetModuleFileNameA
LeaveCriticalSection
ResetEvent
GetFileAttributesA
ReadFileEx
ExpandEnvironmentStringsA
WaitForSingleObjectEx
FindFirstFileA
GlobalFindAtomW
WriteFileEx
InterlockedIncrement
OpenEventA
SetThreadPriority
GetExitCodeThread
LoadLibraryW
WriteFile
FreeLibrary
SetLastError
CompareStringW
SetEvent

advapi32

ReportEventA
RegOpenKeyExA
RegQueryValueExA
RegisterEventSourceA
DeregisterEventSource
SetSecurityDescriptorDacl
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
GetLengthSid
AllocateAndInitializeSid
FreeSid
RegSetValueExA
InitializeAcl
RegDeleteKeyA

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 257KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b625adc18a7ba2afd4057e73b81819a

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rsrc Size: 257KB - Virtual size: 256KB

.reloc Size: 512B - Virtual size: 296B

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 257KB - Virtual size: 256KB

.reloc
Size: 512B - Virtual size: 296B