70c4a9f1130bea9a0f9bf2bb59eb4bd59a7ce1a6253047ad5089b27a320b71f2

Sharing

Copy URL

Twitter E-mail

General

Target

70c4a9f1130bea9a0f9bf2bb59eb4bd59a7ce1a6253047ad5089b27a320b71f2
Size

276KB
MD5

0400227be325dfa2d4314d45063b7900
SHA1

b0de0c378bd9eefe68cc39a410436171a2bb49a1
SHA256

70c4a9f1130bea9a0f9bf2bb59eb4bd59a7ce1a6253047ad5089b27a320b71f2
SHA512

316dbef5125b69bf95daf77630b81b15964824fe5584a36eaf5e350bc24fe8bcb168df2e3e45d9904404f1653d806e96d968585c737a8d4d4e5a2a31f899dc67
SSDEEP

6144:WU60KEKg/0k1iS3y5NM8L/nAHm8j8ctSRYnqB0V3r60oGkA7dSc:WU60KEJck1iay5NMm/nRhDA7dSc

Score

N/A

Malware Config

Signatures

Files

70c4a9f1130bea9a0f9bf2bb59eb4bd59a7ce1a6253047ad5089b27a320b71f2
.exe windows x86

cdd949bbbf32a925fbef3df0dc70caf1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
SearchPathA
GetEnvironmentVariableA
LoadLibraryA
GetProcAddress
FreeLibrary
GetVersionExA
GetModuleHandleA
FlushFileBuffers
CreateFileA
WriteConsoleW
GetTickCount
WriteConsoleA
SetStdHandle
HeapSize
RtlUnwind
InitializeCriticalSection
GetConsoleMode
GetConsoleCP
SetFilePointer
GetLocaleInfoA
WinExec
ExpandEnvironmentStringsA
GetLastError
CreateMutexA
GetConsoleOutputCP
OpenMutexA
Sleep
GetStringTypeW
GetStringTypeA
RaiseException
HeapReAlloc
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetCurrentProcess
GetModuleHandleW
DeviceIoControl
CreateFileW
CloseHandle
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection

user32

TranslateMessage
DispatchMessageA
GetMessageA
RegisterWindowMessageA
keybd_event
PeekMessageA
GetClassNameA
IsWindowVisible
FindWindowExA
TranslateAcceleratorA
SetForegroundWindow
GetWindowThreadProcessId
GetForegroundWindow
PostMessageA
wsprintfA
GetSystemMetrics
SendMessageA
PostQuitMessage
FindWindowA
DefWindowProcA
CreateWindowExA
RegisterClassExA
LoadCursorA
LoadIconA
SetFocus

advapi32

RegOpenKeyExW
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegQueryValueExW

shell32

ShellExecuteA

ole32

CoTaskMemFree
CoCreateInstance
CoUninitialize
CoInitializeEx

shlwapi

StrRStrIA

setupapi

SetupDiGetClassDevsW
SetupDiEnumDeviceInfo
SetupDiGetDeviceInstanceIdW
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyW

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cdd949bbbf32a925fbef3df0dc70caf1

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

shlwapi

setupapi

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 192KB - Virtual size: 192KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 192KB - Virtual size: 192KB