8f1858b7def9e60ab4badcec2a1a94215dfbc6d706fd0f5ef2d5095b187e6ada

Sharing

Copy URL Twitter E-mail

General

Target

8f1858b7def9e60ab4badcec2a1a94215dfbc6d706fd0f5ef2d5095b187e6ada
Size

168KB
MD5

25a21671369d12f29ec5fc015f875c60
SHA1

48527835a3765d8f9f8c28ab7d9c925a6544f7f9
SHA256

8f1858b7def9e60ab4badcec2a1a94215dfbc6d706fd0f5ef2d5095b187e6ada
SHA512

541fdb76063db982e64329143a71d30d48f243bd0a41dcbdd49ae78008431aa4d447a25fd837621e0e950e74a548d6f4f87299e9c3728fdb51dde0a929729882
SSDEEP

3072:bBoRhmlzv1lo/a6O3tLrbBZDz1MGEUXmtRaEnbQs0mc5kRZPQqxtpuKkN:bBoRG/o/a6O9rtZ3mGnXm/aGVD3P6Kk

Score

N/A

Malware Config

Signatures

Files

8f1858b7def9e60ab4badcec2a1a94215dfbc6d706fd0f5ef2d5095b187e6ada
.exe windows x86

77755dc4cf5e487e59c4d6d337a879aa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

monconfigapi

?CfgGetMainAppMutexName@@YAHQA_W@Z
?CfgGetServiceExe@@YAHQA_WH@Z
?CfgOpen@@YAHABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?CfgGetAdbExe@@YAHQA_WH@Z
?CfgGetServiceName@@YAHQA_W@Z

kernel32

WideCharToMultiByte
MultiByteToWideChar
FindClose
VirtualQuery
SetUnhandledExceptionFilter
GetCurrentProcess
SetEvent
GetModuleHandleW
GetCurrentThread
CreateFileW
GetTempPathW
GetProcAddress
GetLocalTime
CreateEventW
Module32FirstW
GetCurrentThreadId
Module32NextW
DeleteFileW
LeaveCriticalSection
EnterCriticalSection
Sleep
SetFilePointer
SystemTimeToFileTime
CreateDirectoryW
ReadFile
GetFileSize
UnmapViewOfFile
GetTickCount
FileTimeToSystemTime
GetFileInformationByHandle
GetSystemTimeAsFileTime
DeleteCriticalSection
CreateFileA
HeapFree
GetProcessHeap
WriteConsoleA
InitializeCriticalSectionAndSpinCount
LoadLibraryA
FindFirstFileW
GetCurrentProcessId
CloseHandle
ReleaseMutex
CreateToolhelp32Snapshot
Process32NextW
GetModuleFileNameA
Process32FirstW
lstrcmpiA
GetLastError
GetModuleFileNameW
TerminateProcess
OpenProcess
CreateMutexW
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
SetEndOfFile
CompareStringA
WriteFile
CompareStringW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LCMapStringW
LCMapStringA
HeapCreate
HeapReAlloc
VirtualAlloc
VirtualFree
GetTimeZoneInformation
GetStdHandle
ExitProcess
HeapSize
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
RtlUnwind
UnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
GetCommandLineA
SetEnvironmentVariableA
RaiseException

user32

GetDesktopWindow
GetMessageW
DispatchMessageW
TranslateMessage

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExW

shell32

SHCreateDirectoryExW

ole32

CoCreateGuid
CoInitialize
CoUninitialize

devhelper

?StartDetect@@YAHXZ
?InitialDevHelper@@YAHXZ
?StopDetect@@YAHXZ
?SetCallBack@@YAHP6AXHPBD@Z@Z
?UninitialDevHelper@@YAHXZ
?InstallApk@@YAHPBD00@Z

shlwapi

PathRemoveFileSpecW
PathAddBackslashW
PathAppendW
PathAppendA
PathRemoveFileSpecA

dbghelp

StackWalk
MiniDumpWriteDump
SymGetModuleBase
SymFunctionTableAccess
SymGetLineFromAddr

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tc
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

77755dc4cf5e487e59c4d6d337a879aa

Headers

DLL Characteristics

File Characteristics

Imports

monconfigapi

kernel32

user32

advapi32

shell32

ole32

devhelper

shlwapi

dbghelp

version

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 30KB - Virtual size: 29KB

.data Size: 5KB - Virtual size: 17KB

.rsrc Size: 1KB - Virtual size: 1KB

.tc Size: 26KB - Virtual size: 28KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 30KB - Virtual size: 29KB

.data
Size: 5KB - Virtual size: 17KB

.rsrc
Size: 1KB - Virtual size: 1KB

.tc
Size: 26KB - Virtual size: 28KB