1d0fdff3c1ae5dd59dda9638972deea0b0666024dd224c8828fe48e5b80ee209

Sharing

Copy URL Twitter E-mail

General

Target

1d0fdff3c1ae5dd59dda9638972deea0b0666024dd224c8828fe48e5b80ee209
Size

293KB
MD5

152372f3b4144cab5328e3be2516b380
SHA1

6d3cba31fff4a658852880003cbc8a43bab87bb5
SHA256

1d0fdff3c1ae5dd59dda9638972deea0b0666024dd224c8828fe48e5b80ee209
SHA512

b19c518b9df083f591b0c45585899dd5db8fd5dea14f8f6e9553ff95c2e2d6930c24b70a1c144742aa8db38e5349a53d54467286b7b337ce2c31fc8c65081f04
SSDEEP

6144:zQabT9aTY89v3mb2vmGZvNickt5HjrEo/N:c69aT3xmYmGZvNYhrEm

Score

N/A

Malware Config

Signatures

Files

1d0fdff3c1ae5dd59dda9638972deea0b0666024dd224c8828fe48e5b80ee209
.exe windows x86

ad764df29b9db688ceea77ad8d979574

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
LocalAlloc
FormatMessageW
CreateDirectoryW
GetFileAttributesW
CloseHandle
OpenProcess
DeleteFileW
LocalFree
WaitForSingleObject
SetEvent
CancelWaitableTimer
WaitForMultipleObjects
SetWaitableTimer
CreateWaitableTimerW
CreateThread
LeaveCriticalSection
RaiseException
GetLastError
Sleep
GetModuleHandleW
GetCurrentThreadId
GetCommandLineW
SetEnvironmentVariableA
CompareStringW
CompareStringA
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
EnterCriticalSection
lstrlenW
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
CreateEventW
InitializeCriticalSection
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetConsoleMode
GetConsoleCP
LoadLibraryA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
GetLocaleInfoA
FreeEnvironmentStringsA
GetTimeZoneInformation
WideCharToMultiByte
GetDateFormatA
GetTimeFormatA
MultiByteToWideChar
GetOEMCP
GetACP
GetCPInfo
HeapSize
ExitProcess
VirtualFree
SetFilePointer
GetVersionExA
HeapFree
RtlUnwind
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
HeapReAlloc
VirtualProtect
VirtualAlloc
GetProcAddress
GetModuleHandleA
GetSystemInfo
VirtualQuery
GetSystemTimeAsFileTime
GetProcessHeap
GetStartupInfoW
WriteFile
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapDestroy
HeapCreate

user32

CharUpperBuffW
TranslateMessage
DispatchMessageW
SetTimer
PostThreadMessageW
CharNextW
CharUpperW
GetMessageW
UnregisterClassA

advapi32

RegDeleteKeyW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegQueryInfoKeyW

shell32

SHGetFolderPathW

ole32

CLSIDFromString
CoUninitialize
CoInitializeEx
CoDisconnectObject
CoRevokeClassObject
CoRegisterClassObject
StringFromGUID2
CoInitialize
CoCreateInstance

oleaut32

RegisterTypeLi
UnRegisterTypeLi
VariantChangeType
VarBstrCat
SysAllocStringLen
SafeArrayCreate
SafeArrayRedim
SafeArrayDestroy
VariantCopy
VariantClear
SafeArrayCopy
VariantInit
VarBstrCmp
SafeArrayUnlock
SafeArrayGetVartype
SafeArrayGetLBound
SafeArrayGetUBound
LoadTypeLi
LoadRegTypeLi
SysStringLen
SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysFreeString
SafeArrayLock

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ad764df29b9db688ceea77ad8d979574

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 160KB - Virtual size: 158KB

.rdata Size: 32KB - Virtual size: 30KB

.data Size: 8KB - Virtual size: 12KB

.rsrc Size: 84KB - Virtual size: 84KB

.text
Size: 160KB - Virtual size: 158KB

.rdata
Size: 32KB - Virtual size: 30KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 84KB - Virtual size: 84KB