5b55a7a2c5d9f40b18532c29aeaac4c8daa74fabed7a39aee42b778aa1c00f49

General

Target

5b55a7a2c5d9f40b18532c29aeaac4c8daa74fabed7a39aee42b778aa1c00f49
Size

284KB
MD5

20d9ea9572997f8c3f3f565328f98630
SHA1

e1e9591e9ab830439aab6609f9917f34cf688afd
SHA256

5b55a7a2c5d9f40b18532c29aeaac4c8daa74fabed7a39aee42b778aa1c00f49
SHA512

1d2efb91b4dddd85addcd001def824a78cdd26cf53ea5de38744d394a337483a41d4c3f247bb057b35dc5d81c0eda8fd61e6a1b9ae9533a831f25de232c7b714
SSDEEP

6144:x8qKmfxXM1OS+NQKtJyPY5/wfkO/teym2tVgZZRWwzuJW31vR+J8QnF3uK:xtKcxuGONYZqteym2t27RXz2W31vR0x9

Score

N/A

Malware Config

Signatures

Files

5b55a7a2c5d9f40b18532c29aeaac4c8daa74fabed7a39aee42b778aa1c00f49
.exe windows x86

a5ee17417b1c04843b9be84e0702e754

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

SetSecurityDescriptorOwner
TraceMessage
SetSecurityDescriptorDacl
GetSecurityDescriptorOwner
InitializeAcl
AddAccessAllowedAce
GetTraceEnableLevel
RegOpenKeyExW
RegQueryValueExW
InitializeSecurityDescriptor

kernel32

GetStdHandle
SetFilePointer
FreeLibrary
GetCommandLineW
GetDateFormatW
LocalFree
SetLastError
GetFileType
FormatMessageW
FindFirstFileW
GetLocalTime
ReadFile
GetStartupInfoA
VerifyVersionInfoW
MultiByteToWideChar
LocalAlloc
DeleteFileA
GetModuleHandleA
GetEnvironmentStringsA
GetTimeFormatW
GetSystemDefaultLCID
WriteConsoleW
GetLocaleInfoW
FindNextFileW
CreateFileW
GetFileAttributesW
LoadLibraryW
CloseHandle

msvcrt

__dllonexit
malloc
_initterm
free
wcscmp
_onexit
wcsncmp
wcslen
swprintf
wcscpy
_purecall
_adjust_fdiv

iasacct

DllCanUnloadNow
DllUnregisterServer
DllRegisterServer
DllGetClassObject

ws2_32

htons
htonl

hnetcfg

HNetFreeSharingServicesPage
HNetSharingAndFirewallSettingsDlg
HNetGetSharingServicesPage
HNetSharedAccessSettingsDlg
HNetGetFirewallSettingsPage
HNetDeleteRasConnection

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5ee17417b1c04843b9be84e0702e754

Headers

File Characteristics

Imports

advapi32

kernel32

msvcrt

iasacct

ws2_32

hnetcfg

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 103KB - Virtual size: 102KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 103KB - Virtual size: 102KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 11KB - Virtual size: 10KB