95853ee3635d39d49e765e35f841fab681c9d395173ca66097759cb621490be4

General

Target

95853ee3635d39d49e765e35f841fab681c9d395173ca66097759cb621490be4
Size

220KB
MD5

04f91fcc125d403b0beeaf7bc5b8d871
SHA1

aaab8ec91348d20ce97b653d52b7d9c3c33922e6
SHA256

95853ee3635d39d49e765e35f841fab681c9d395173ca66097759cb621490be4
SHA512

9e57ab9862fdb6b447fb093c1b8e0cf4c6ce9ed4e2e232c63ee72d61de99cf54443ea786e214ef1509b5bbccd47e96d383b2127520c25d4e06406415b56a600b
SSDEEP

1536:eWGvFf+fx9cI4/ke/rrDTc/wWGrw0L5hukp:eWKFf+frMse///AwWOzL5gk

Score

N/A

Malware Config

Signatures

Files

95853ee3635d39d49e765e35f841fab681c9d395173ca66097759cb621490be4
.exe windows x86

0725b7f041bdf33ccf76f34c9a73e6ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoTaskMemFree
CoCreateInstance

kernel32

lstrlenW
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcmpA
lstrcatA
WriteFile
WideCharToMultiByte
UnmapViewOfFile
Sleep
MultiByteToWideChar
MapViewOfFile
LocalFree
LocalAlloc
LoadLibraryA
GlobalFree
GlobalAlloc
GetWindowsDirectoryA
GetVolumeInformationA
GetVersionExA
GetTickCount
GetSystemDirectoryA
GetProcAddress
GetPrivateProfileStringA
GetPrivateProfileSectionNamesA
GetPrivateProfileIntA
GetModuleHandleA
GetModuleFileNameA
GetLastError
GetFileSize
GetCurrentProcessId
GetCurrentProcess
FindNextFileA
FindFirstFileA
FindClose
ExitProcess
DeviceIoControl
DeleteFileA
CreateFileMappingA
CreateFileA
CopyFileA
CloseHandle

user32

wsprintfA

oleaut32

SafeArrayDestroy
SafeArrayUnaccessData
SysAllocString
SysFreeString
SafeArrayAccessData
SafeArrayCreateVector

advapi32

RegEnumValueA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
StartServiceA
RegEnumKeyExA
AdjustTokenPrivileges
CloseServiceHandle
ControlService
CreateServiceA
DeleteService
GetUserNameA
LookupPrivilegeValueA
OpenProcessToken
OpenSCManagerA
OpenServiceA
RegCreateKeyA
RegCloseKey

shlwapi

StrStrIA
StrCmpNA
StrRChrA
StrChrA

shell32

ShellExecuteA

wsock32

WSAStartup

rasapi32

RasGetEntryPropertiesA
RasGetEntryDialParamsA
RasEnumEntriesA

Sections

Size: 216KB - Virtual size: 216KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0725b7f041bdf33ccf76f34c9a73e6ed

Headers

File Characteristics

Imports

ole32

kernel32

user32

oleaut32

advapi32

shlwapi

shell32

wsock32

rasapi32

Sections

Size: 216KB - Virtual size: 216KB