d8d8ec38913e210a97db682627bee94200da0dbaf725e5b23768830deaf29b2a

General

Target

d8d8ec38913e210a97db682627bee94200da0dbaf725e5b23768830deaf29b2a
Size

277KB
MD5

151a912f2082bd8ec618387e4408e4d6
SHA1

551e81bba717f49f23c52200769baf7bb4b28a7d
SHA256

d8d8ec38913e210a97db682627bee94200da0dbaf725e5b23768830deaf29b2a
SHA512

f0a887a0d1f0880358f6b95256861e9045b915f79317356a0b3a783de960794f3cd8d416542b3327df2e53fa48689a8b28f6c35e1f3f50dc27b87bcb015e6fdf
SSDEEP

6144:p5J6C9h64mZ/uNjYD7dZBjCXBGI3IrpTbQWClXdCUtqBdgO/51:lHxcWNjYDrBjuwIEXH6UW8mOR

Score

N/A

Malware Config

Signatures

Files

d8d8ec38913e210a97db682627bee94200da0dbaf725e5b23768830deaf29b2a
.exe windows x86

b3e8cf466df51a04062820d8aec17653

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
WaitForSingleObject
SetFilePointer
DeleteFileA
GetCurrentProcessId
CloseHandle
GetTempFileNameA
AddAtomA
lstrlenA
GlobalFree
GetVersionExA
CreateFileW
ReadFile
ReleaseMutex
Sleep
MultiByteToWideChar
DeleteCriticalSection
QueryPerformanceCounter
CopyFileA
GlobalLock
WideCharToMultiByte
GetVolumeInformationA
GetSystemTimeAsFileTime
EnumResourceNamesW
GetLastError
GetModuleFileNameA
LocalFree
InitializeCriticalSection
CreateFileA
GetFileSize
LocalAlloc
GetTickCount
CreateDirectoryA
GetTempPathA
CheckNameLegalDOS8Dot3W
InterlockedDecrement
GetSystemTime
GetCurrentThreadId
SetFileAttributesA
VirtualAlloc
DeviceIoControl
CreateMutexA
InterlockedIncrement
DisableThreadLibraryCalls
GlobalUnlock
VirtualFree
GetModuleFileNameW
FreeLibrary

setupapi

CM_Get_Child
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

lz32

LZCopy
LZClose
LZOpenFileA

Sections

.text
Size: 143KB - Virtual size: 275KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b3e8cf466df51a04062820d8aec17653

Headers

File Characteristics

Imports

kernel32

setupapi

lz32

Sections

.text Size: 143KB - Virtual size: 275KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 130KB - Virtual size: 130KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 143KB - Virtual size: 275KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 130KB - Virtual size: 130KB

.rsrc
Size: 512B - Virtual size: 4KB