9436d2dd194c0456cc90503e764cc8d4da5a29eca97c4bdd43e9f38ca3d108e2

Sharing

Copy URL Twitter E-mail

General

Target

9436d2dd194c0456cc90503e764cc8d4da5a29eca97c4bdd43e9f38ca3d108e2
Size

100KB
MD5

0e2d94ccda89a40608d154ca050df0c0
SHA1

03eab730d7210b66995385d94121bc93977b0be6
SHA256

9436d2dd194c0456cc90503e764cc8d4da5a29eca97c4bdd43e9f38ca3d108e2
SHA512

49541bb366c144f818f329fccb92d82005402940bfcf675f39de5c1ca4a1970d1ac678d41b6e99040337f9b0146312488b06f3c67ea63da935b1534e303dd8bf
SSDEEP

3072:JWcV7+LafFOaQha5QEwdMlY4aWt+cdArdb:Jt7khZEOAcZcdArdb

Score

N/A

Malware Config

Signatures

Files

9436d2dd194c0456cc90503e764cc8d4da5a29eca97c4bdd43e9f38ca3d108e2
.exe windows x86

1f591fd19071291297cb6e36a1239eb6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiDeleteDeviceInterfaceData
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyA
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiOpenDeviceInterfaceA

kernel32

LCMapStringW
GetLastError
OutputDebugStringA
CreateFileA
lstrcatA
lstrcpyA
CloseHandle
lstrcmpiA
WaitForMultipleObjects
SetThreadPriority
GetCurrentThread
DeviceIoControl
CreateEventA
CreateThread
WaitForSingleObject
GetStringTypeA
CreateProcessA
GetWindowsDirectoryA
MultiByteToWideChar
LCMapStringA
GetCPInfo
GetOEMCP
GetACP
LoadLibraryA
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
GetStringTypeW
RtlUnwind
GetLocaleInfoA
VirtualProtect
VirtualQuery
GetSystemInfo
SetEvent
HeapFree
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
ExitProcess
GetProcAddress
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA

user32

FindWindowA
RegisterClassExA
DispatchMessageA
TranslateMessage
CreateWindowExA
DefWindowProcA
UnregisterDeviceNotification
RegisterDeviceNotificationA
PostQuitMessage
SetWindowLongA
GetMessageA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1f591fd19071291297cb6e36a1239eb6

Headers

File Characteristics

Imports

setupapi

kernel32

user32

advapi32

Sections

.text Size: 16KB - Virtual size: 14KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 68KB - Virtual size: 68KB

.text
Size: 16KB - Virtual size: 14KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 68KB - Virtual size: 68KB