7746a1b3de8e2835ffac85c2e1613350219ffa458b7a3aa80464a2ede73b6696

Sharing

Copy URL Twitter E-mail

General

Target

7746a1b3de8e2835ffac85c2e1613350219ffa458b7a3aa80464a2ede73b6696
Size

186KB
MD5

831efca88c4127d7e25007d5b0826213
SHA1

e7da40053e5a759b14b382ac1c1cdf6b5d85d9e8
SHA256

7746a1b3de8e2835ffac85c2e1613350219ffa458b7a3aa80464a2ede73b6696
SHA512

be1c8ea24b658279a004d1b5fe7125365ee8042220b4f80d4280693ce7bb5aacd5de4a7fa3fc82d6cbbd51a32d11c3f7339ab4fa5fbec4094ee12e65bafc26d5
SSDEEP

3072:I6B05KRgCv45b95RkcpAhRbROKXOTfLoarjEtX5f+U5eAkiQtHQIQphG:bBoyv45bNkcpERbRQjoaUtXx+XAUtHEc

Score

N/A

Malware Config

Signatures

Files

7746a1b3de8e2835ffac85c2e1613350219ffa458b7a3aa80464a2ede73b6696
.exe windows x86

acd2b25d99d42a63c61aafd11fd988fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
??1type_info@@UAE@XZ
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
strstr
__CxxFrameHandler
??3@YAXPAX@Z
time
srand
rand
??2@YAPAXI@Z
_except_handler3
malloc
realloc

dbghelp

MakeSureDirectoryPathExists

kernel32

SetProcessWorkingSetSize
GetModuleHandleA
GetStartupInfoA
FreeLibrary
HeapAlloc
GetProcessHeap
Process32Next
lstrlenA
WriteFile
CreateFileA
ExitProcess
CloseHandle
GetCurrentProcess
GlobalFree
GlobalAlloc
SetFileTime
LocalFileTimeToFileTime
lstrcpyA
GetLastError
lstrcatA
GetCommandLineA
OpenProcess
GetCurrentProcessId
GetVersionExA
WritePrivateProfileStringA
CopyFileA
DeleteFileA
GetTempPathA
SetUnhandledExceptionFilter
Sleep

user32

wsprintfA
IsCharAlphaNumericA

advapi32

ControlService
OpenSCManagerA
RegOpenKeyExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegEnumKeyExA
RegQueryValueExA
AllocateAndInitializeSid
GetLengthSid
InitializeAcl
AddAccessAllowedAce
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetKeySecurity
RegCloseKey
FreeSid
OpenServiceA
ChangeServiceConfigA
RegCreateKeyA
RegOpenKeyA

shell32

SHGetSpecialFolderPathA

psapi

GetModuleFileNameExA

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

acd2b25d99d42a63c61aafd11fd988fb

Headers

File Characteristics

Imports

msvcrt

dbghelp

kernel32

user32

advapi32

shell32

psapi

Sections

.text Size: 27KB - Virtual size: 26KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 19KB - Virtual size: 21KB

.rsrc Size: 135KB - Virtual size: 134KB

.text
Size: 27KB - Virtual size: 26KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 19KB - Virtual size: 21KB

.rsrc
Size: 135KB - Virtual size: 134KB