b893a74b5fd2d8ee3c23c7d0d3cc1433a6d1bc1d3ac1a5c9671696b5e29f9dc7

Sharing

Copy URL

Twitter E-mail

General

Target

b893a74b5fd2d8ee3c23c7d0d3cc1433a6d1bc1d3ac1a5c9671696b5e29f9dc7
Size

303KB
MD5

0d1e2af66325bb4ef6c24874340a5e80
SHA1

e6ee16e70555bc531fe7cd2bf9ac8cdf6094b485
SHA256

b893a74b5fd2d8ee3c23c7d0d3cc1433a6d1bc1d3ac1a5c9671696b5e29f9dc7
SHA512

2b78158bb17b5281105d3421a5c1b5792e569c72eb038f3bd8b3ac9d00007e262c42c7172619f022ff678e084c58b9475aa243f52ce60e3133a86e8e90cca1c0
SSDEEP

6144:gV/JJ6AA0xM8vbMY1B6Xf2+wAn96LEo2BeT96hdzRX6Sk2LKEuSy:gFJJLAzaMv2+wAMLv2B9RX6SX2EuSy

Score

N/A

Malware Config

Signatures

Files

b893a74b5fd2d8ee3c23c7d0d3cc1433a6d1bc1d3ac1a5c9671696b5e29f9dc7
.exe windows x86

6f843cb32a987809d71b6698a3109f1a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

__p__commode
_wcsnicmp
memmove
setlocale
_wtoi
__setusermatherr
_c_exit
_mbsrchr
_mbsinc
??2@YAPAXI@Z
_except_handler3
iswspace
_mbschr
_controlfp
??3@YAXPAX@Z
_XcptFilter
wcscpy
__getmainargs
_acmdln
_initterm
_cexit
__lconv_init
_exit
wcsncmp
_adjust_fdiv
__set_app_type

advapi32

RegCloseKey
RegOpenKeyExW
RegEnumKeyW
RegEnumKeyExW
AdjustTokenPrivileges
FreeSid
RegOpenKeyW
LookupPrivilegeValueW
RegSetValueExW
RegQueryValueW

ole32

CoCreateInstance
CoUninitialize
CLSIDFromString
OleInitialize
CoInitialize
CoTaskMemAlloc

shlwapi

PathIsDirectoryW
PathIsRootW
SHGetValueW
StrCmpIW
StrCatW
StrChrIW
StrCpyW
StrCmpW
StrCpyNW
StrDupW

shell32

SHGetMalloc
SHGetSpecialFolderLocation
SHGetFileInfoW
SHBrowseForFolderW

kernel32

LocalAlloc
FindFirstFileA
GetCommState
SetEvent
GetDiskFreeSpaceW
DeleteFileW
GetLastError
GetCurrentDirectoryW
LeaveCriticalSection
HeapCreate
ExpandEnvironmentStringsW
WaitForSingleObject
SetFilePointer
CreateEventW
FormatMessageA
ExitProcess
CloseHandle
QueryPerformanceCounter
GetVersionExW
GetModuleHandleA
GetVersionExA
IsDBCSLeadByte
ReadFile
GetModuleHandleW
CreateDirectoryW
ExitThread
SetFileAttributesW
InitializeCriticalSection
WaitForMultipleObjects
FileTimeToLocalFileTime
EnterCriticalSection
GetTempFileNameA
HeapQueryInformation
FileTimeToDosDateTime
SetCurrentDirectoryW
SetCommTimeouts
GetDriveTypeW
lstrlenW
VirtualFree
LoadLibraryExW
ResetEvent
SetErrorMode
FindFirstFileW
SetCommState
GetTempPathA
SetLastError
GetProcessHeap
CreateDirectoryA
GetCurrentProcess
CloseHandle
HeapAlloc
lstrcatW
GetEnvironmentVariableW
GetEnvironmentStringsW
GetModuleFileNameW
GetProcAddress
VirtualAlloc
LoadLibraryW
UnhandledExceptionFilter
DebugBreak
HeapFree
CopyFileW
GetCurrentProcessId
GetStartupInfoA
GetWindowsDirectoryW
GetSystemTimeAsFileTime
CreateProcessW
CreateFileW
MultiByteToWideChar
GetVersion
FindNextFileW

user32

LoadImageW
SendDlgItemMessageW
ReleaseDC
GetWindowRect
LoadIconW
IsWindow
GetDlgItem
PostMessageW
EnumThreadWindows
SendMessageW
RegisterClassExW
SetCursor
DialogBoxParamW
SetTimer
GetClientRect
ShowWindow
DispatchMessageW
wsprintfW
InvalidateRect
LoadStringW
RedrawWindow
GetMessageW
LoadStringA
MessageBoxA
EnumChildWindows
CreateWindowExW
PostQuitMessage
CopyRect
ExitWindowsEx
EnableWindow
EndDialog
SystemParametersInfoW
GetSysColor
SetWindowPos
GetWindowLongW
SetWindowLongW
MessageBoxW

setupapi

SetupFindNextLine
SetupGetStringFieldW
SetupOpenAppendInfFileW
SetupOpenInfFileW
SetupCloseInfFile

Sections

.text
Size: 257KB - Virtual size: 257KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 744KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f843cb32a987809d71b6698a3109f1a

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

ole32

shlwapi

shell32

kernel32

user32

setupapi

Sections

.text Size: 257KB - Virtual size: 257KB

.data Size: 31KB - Virtual size: 30KB

.rsrc Size: 14KB - Virtual size: 744KB

.text
Size: 257KB - Virtual size: 257KB

.data
Size: 31KB - Virtual size: 30KB

.rsrc
Size: 14KB - Virtual size: 744KB