94a50b5bf013a84eb466abbf536ed1bf428d669e3e55af2dfe0c0208e680f41e

Sharing

Copy URL

Twitter E-mail

General

Target

94a50b5bf013a84eb466abbf536ed1bf428d669e3e55af2dfe0c0208e680f41e
Size

159KB
MD5

072f071d205f6c9bb339b5b15c265db0
SHA1

35f4c4749f47c4ce4c08a7f3cc6a5ab57d268b79
SHA256

94a50b5bf013a84eb466abbf536ed1bf428d669e3e55af2dfe0c0208e680f41e
SHA512

3e2dae9ab2969b8123475cd7f9d19529346086a31c9cb12afd3d3c924c5e40b0045abb8397b7ed510e5878e342e97b3248bc39640de99c4b750213ff23051e06
SSDEEP

3072:1ubf+JG5gaBREl+zBYnGV/dclzNBZ5AaJTAeJTA:1Qf+J5l+tMC1c7B

Score

N/A

Malware Config

Signatures

Files

94a50b5bf013a84eb466abbf536ed1bf428d669e3e55af2dfe0c0208e680f41e
.exe windows x86

64667aad575e6a6ff9b774ab23eb935f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
SetEvent
OpenEventW
SetCurrentDirectoryW
GetCommandLineW
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleA
GetStartupInfoA
lstrcmpiW
lstrcpyW
lstrlenW
GetFileAttributesW
GetModuleFileNameW
GetSystemDirectoryW
FreeLibrary
GetProcAddress
SetLastError
LoadLibraryW
GetExitCodeProcess
lstrcmpW
CreateFileW
OpenMutexW
GetCurrentThreadId
Sleep
CreateEventW
CreateFileMappingW
CloseHandle
MapViewOfFile
OpenFileMappingW
UnmapViewOfFile
GetLastError
GetCurrentThread
GetCurrentProcessId
ProcessIdToSessionId
LocalAlloc
LocalFree
OpenProcess
lstrcatW
TerminateProcess
CreateProcessW
GetProcessVersion
SetErrorMode
InterlockedExchange
MultiByteToWideChar
lstrlenA
DuplicateHandle
DeleteCriticalSection
TerminateThread
WideCharToMultiByte
GetUserDefaultLCID
AreFileApisANSI
IsBadReadPtr
LoadLibraryA
CreateEventA
GetDateFormatA
GetDateFormatW
GetTimeFormatA
GetTimeFormatW
FormatMessageA

user32

GetSystemMetrics
LoadCursorA
LoadIconW
TranslateMessage
SetTimer
MsgWaitForMultipleObjects
DispatchMessageW
PeekMessageW
DefWindowProcW
MessageBoxW
FindWindowExW
RegisterClassW
CreateWindowExW
DestroyWindow
KillTimer
SetProcessWindowStation
OpenWindowStationW
GetProcessWindowStation
CloseWindowStation
CloseDesktop
GetUserObjectInformationW
OpenDesktopW
OpenInputDesktop
SetThreadDesktop
GetThreadDesktop
PostMessageW
GetWindowThreadProcessId
EnumWindows
PostThreadMessageW
RegisterWindowMessageW
LoadStringW

msvcrt

__p__commode
__p__fmode
__set_app_type
_controlfp
_XcptFilter
_exit
_c_exit
_adjust_fdiv
swprintf
wcschr
_wcsnicmp
free
malloc
_wsplitpath
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_except_handler3
_cexit
_wcsicmp
__argc
__argv
toupper
_ftol
strncpy
_onexit
__dllonexit
wcscmp

advapi32

RegQueryValueExW
RegOpenKeyExA
QueryServiceStatus
RegCreateKeyExW
RegEnumKeyW
RegSetValueExW
ImpersonateLoggedOnUser
RegOpenCurrentUser
StartServiceW
CreateProcessAsUserW
ControlService
CheckTokenMembership
DuplicateToken
DuplicateTokenEx
OpenSCManagerW
OpenServiceW
CloseServiceHandle
RegOpenKeyExW
RegCloseKey
ImpersonateSelf
OpenThreadToken
InitializeAcl
AddAccessAllowedAce
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
AccessCheck
RevertToSelf
GetUserNameW
CopySid
GetLengthSid
GetTokenInformation
AllocateAndInitializeSid
FreeSid

ole32

CoRegisterClassObject
StringFromGUID2
CLSIDFromString
CoInitializeEx
CoRevokeClassObject
CoInitialize
CoFreeUnusedLibraries
CoUninitialize
CoCreateInstance
CoTaskMemFree

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64667aad575e6a6ff9b774ab23eb935f

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

advapi32

ole32

Sections

.text Size: 115KB - Virtual size: 115KB

.data Size: 16KB - Virtual size: 16KB

.rsrc Size: 27KB - Virtual size: 26KB

.text
Size: 115KB - Virtual size: 115KB

.data
Size: 16KB - Virtual size: 16KB

.rsrc
Size: 27KB - Virtual size: 26KB