78573988b4eef7b72e6b0259152c8dac326312c069d1a08bbad97d44802104d8

Sharing

Copy URL

Twitter E-mail

General

Target

78573988b4eef7b72e6b0259152c8dac326312c069d1a08bbad97d44802104d8
Size

156KB
MD5

0dc128afb3ffa2d1c07f6d21a7a91c81
SHA1

af7d820ccee279455705fb105444f3c2dcfa196b
SHA256

78573988b4eef7b72e6b0259152c8dac326312c069d1a08bbad97d44802104d8
SHA512

bbcf3ffe653620f5f419e4b65f93b044e2b5fee46b61a63943aaa4ebb88565efc93e3c5328cf0c1b3100cd492f965fdfe906068be2223171cd30021b0cb84b96
SSDEEP

1536:toQm2rHYiDkA98Y5ThuuFR6WSrTaPvGstMnoGIDOUX0+QLfGCZSt7EWqZ55SqEdm:CQLrHJRyCSyPes6noGIDOUXAGjREWuqy

Score

N/A

Malware Config

Signatures

Files

78573988b4eef7b72e6b0259152c8dac326312c069d1a08bbad97d44802104d8
.exe windows x86

2184c9856e933e51d0b2d975fa511e47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

cfgmgr32

CM_Locate_DevNodeA
CM_Create_DevNodeA

kernel32

FindNextFileA
FindFirstFileA
MultiByteToWideChar
SetLastError
CopyFileA
SetFileAttributesA
MoveFileA
DeleteFileA
GetProcAddress
LoadLibraryA
GetTempPathA
FreeLibrary
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
InterlockedDecrement
InterlockedIncrement
HeapFree
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
FindClose
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
LCMapStringA
LCMapStringW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
HeapReAlloc
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
SetFilePointer
SetStdHandle
FlushFileBuffers
ReadFile
CreateFileA
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
RemoveDirectoryA
CreateDirectoryA
GetFileAttributesA
GetWindowsDirectoryA
GetModuleFileNameA
CreateMutexA
GetLastError
CloseHandle
TlsGetValue

user32

EndDialog
MessageBoxA
DialogBoxParamA
SetWindowTextA
SetDlgItemTextA

advapi32

RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc

setupapi

SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupDiCreateDeviceInfoList
SetupDiCreateDeviceInfoA
SetupDiSetDeviceRegistryPropertyA
SetupDiCallClassInstaller
SetupIterateCabinetA
SetupOpenInfFileA
SetupDiGetINFClassA
SetupCloseInfFile
SetupGetStringFieldA
SetupFindNextLine
SetupCopyOEMInfA
SetupFindFirstLineA

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2184c9856e933e51d0b2d975fa511e47

Headers

File Characteristics

Imports

cfgmgr32

kernel32

user32

advapi32

shell32

setupapi

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 18KB

.rsrc Size: 72KB - Virtual size: 72KB

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 18KB

.rsrc
Size: 72KB - Virtual size: 72KB