989e34937d4e0765303e2bf5b6c37673befcc02d7d7d7387006bedb8e7ed2b4d

Sharing

Copy URL

Twitter E-mail

General

Target

989e34937d4e0765303e2bf5b6c37673befcc02d7d7d7387006bedb8e7ed2b4d
Size

196KB
MD5

0038b40b2837f632186071cd912dd750
SHA1

1454a46fbd9ce23730afc12fcb6f872813a4e9c8
SHA256

989e34937d4e0765303e2bf5b6c37673befcc02d7d7d7387006bedb8e7ed2b4d
SHA512

eace81196233d7d5821bbb72e4d73a70d5646c418581686d4ec36f0401fc27e49b184874911c098013489384c163b082da5f4954b655f2c4db751de0223bb9a5
SSDEEP

3072:di3DfZnx81chnxPRRlt8dNw07UR5IrYhwP5ITm3drafA45YS5v:gb3XxZRSNw0a5Jhg5ITmtra4jq

Score

N/A

Malware Config

Signatures

Files

989e34937d4e0765303e2bf5b6c37673befcc02d7d7d7387006bedb8e7ed2b4d
.exe windows x86

c9f6d26b3d322d21f62a9e668e217d9d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
CoInitialize
CoCreateInstance

cmssc

ord3
ord4
ord5
ord1
ord7
ord6
ord8

inter_f2

MSI_RALINK_SET_STATUS
MSI_RALINK_GET_STATUS
Actiontec_USB_WLAN_Key
INTEL_MacIO_Change
MSI_RALINK_IsDeviceDriverExist
INTEL_CALEXICO_LOADDLL_SBRNGAPI
INTEL_LOADDLL_RADFN
SIS_USB_SIS_FINDADAPTER
SIS_USB_SIS_CLOSE_ADAPTER
Actiontec_USB_WLAN_Status
INTEL_CALEXICO_STATUS
INTEL_CALEXICO_CHANGE
INTEL_OpenMac
INTEL_MacIO_Status
INTEL_CloseMac
SIS_USB_SIS_ALLOCADAPTER
SIS_USB_SIS_DoesServiceNeedtobeStopped
SIS_USB_SIS_OPEN_ADAPTER
SIS_USB_SIS_Get_Status
SIS_USB_SIS_Set_Status
SIS_USB_SIS_STOP_DRIVER

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiClassGuidsFromNameA

kernel32

GetEnvironmentStringsW
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
HeapReAlloc
VirtualAlloc
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetCurrentProcess
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
GetModuleHandleA
GetLastError
lstrcpynA
CreateFileA
CloseHandle
DeviceIoControl
Sleep
WinExec
CreateThread
CreateEventA
ResumeThread
SuspendThread
GetVersionExA
CreateMutexA
OpenMutexA
GetEnvironmentVariableA
SetLastError
GetSystemPowerStatus
WaitForSingleObject
GetStartupInfoA
GetExitCodeThread
LoadLibraryExA
SetCurrentDirectoryA
MultiByteToWideChar
LCMapStringA
GetStringTypeW
LCMapStringW
GetStringTypeA
TerminateThread
GetCommandLineA
GetVersion
ExitProcess
HeapFree
HeapAlloc
TerminateProcess
UnhandledExceptionFilter

user32

LoadCursorA
LoadIconA
UpdateWindow
RegisterClassExA
GetSystemMetrics
LoadStringA
CreateWindowExA
DefWindowProcA
DestroyWindow
PostQuitMessage
EndPaint
MessageBoxA
KillTimer
BeginPaint
LoadAcceleratorsA
CheckDlgButton
MoveWindow
IsDlgButtonChecked
GetDlgItem
SendMessageA
LoadImageA
DestroyIcon
ExitWindowsEx
RegisterWindowMessageA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
DialogBoxParamA
EndDialog
wsprintfA
SetTimer
keybd_event
FindWindowExA
FindWindowA
PostMessageA
DrawTextA
GetClientRect
GetKeyboardState

advapi32

RegSetValueExA
AdjustTokenPrivileges
RegOpenKeyExA
LookupPrivilegeValueA
RegQueryValueExA
OpenProcessToken
RegCloseKey
RegOpenKeyA
RegEnumKeyExA
RegCreateKeyExA

shell32

ShellExecuteA
Shell_NotifyIconA

winmm

mixerClose
PlaySoundA
mixerOpen
mixerGetDevCapsA
mixerGetNumDevs
mixerGetLineInfoA
mixerGetLineControlsA
mixerGetControlDetailsA
mixerSetControlDetails

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

sz+
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c9f6d26b3d322d21f62a9e668e217d9d

Headers

File Characteristics

Imports

ole32

cmssc

inter_f2

setupapi

kernel32

user32

advapi32

shell32

winmm

Sections

.text Size: 60KB - Virtual size: 59KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 17KB

.rsrc Size: 20KB - Virtual size: 17KB

sz+ Size: 88KB - Virtual size: 88KB

.text
Size: 60KB - Virtual size: 59KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 17KB

.rsrc
Size: 20KB - Virtual size: 17KB

sz+
Size: 88KB - Virtual size: 88KB