080568dc1a4dcd0f867ea883ad365e398f8caa6db77d3d9791c01dd60b5f8788

Sharing

Copy URL Twitter E-mail

General

Target

080568dc1a4dcd0f867ea883ad365e398f8caa6db77d3d9791c01dd60b5f8788
Size

156KB
MD5

8377d8e51f0128aa6e1bcff48bdfc0ab
SHA1

2ae93cd2b7359968408b8b196e3e91fda0e90ede
SHA256

080568dc1a4dcd0f867ea883ad365e398f8caa6db77d3d9791c01dd60b5f8788
SHA512

e965ae69b8934d10c2dd575c856902b059743994bc0de3e69c39f2cac68ffd60acbfa94e7b8394d5ad309c72f571998e7c90a0d94c03bd160f39dbce6c4b52f2
SSDEEP

3072:vEk8M1S67798+wTKXFznhuLFls+422lXAu4GMHFkdKF:vP8s2ykX2NAu4Jlkc

Score

N/A

Malware Config

Signatures

Files

080568dc1a4dcd0f867ea883ad365e398f8caa6db77d3d9791c01dd60b5f8788
.dll windows x86

0407326a26f9dd30109d5902f324fe57

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
RegQueryValueExA
RegQueryValueExW
RegCreateKeyExW
RegEnumKeyExA
ChangeServiceConfigA
ChangeServiceConfig2A
GetTokenInformation
RegOpenKeyExW
GetSecurityDescriptorControl
RegEnumValueW
RegFlushKey

version

GetFileVersionInfoSizeW
VerQueryValueA
GetFileVersionInfoW
GetFileVersionInfoSizeA

kernel32

RtlUnwind
GetStringTypeW
LCMapStringW
LCMapStringA
MultiByteToWideChar
IsValidLocale
LoadLibraryA
GetProcAddress
GetModuleHandleA
GetHandleInformation
VirtualAlloc
GetThreadTimes
CloseHandle
FormatMessageA
GetStringTypeA
IsValidCodePage
lstrlenA
lstrcmpiA
GetCurrentDirectoryW
ResetEvent
GetTempFileNameW
GetModuleFileNameW
CopyFileW
CreateFileA
InterlockedExchange
WriteFile
GetShortPathNameA
WriteConsoleW
GetCurrentThread
FreeLibrary
lstrcmpiW
SetStdHandle
ExitProcess
GetSystemTime
HeapAlloc
GetCommandLineA
GetVersion
HeapDestroy
HeapCreate
VirtualFree
HeapFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
HeapReAlloc
IsBadWritePtr
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
UnhandledExceptionFilter
GetCPInfo
GetACP
GetOEMCP
FlushFileBuffers
SetEndOfFile
ReadFile
SetFilePointer

Exports

Exports

ubwu

Sections

.text
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0407326a26f9dd30109d5902f324fe57

Headers

File Characteristics

Imports

advapi32

version

kernel32

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 81KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 52KB - Virtual size: 54KB

.reloc Size: 12KB - Virtual size: 10KB

.text
Size: 84KB - Virtual size: 81KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 52KB - Virtual size: 54KB

.reloc
Size: 12KB - Virtual size: 10KB