7b5d6671f4be5a302b961b0649d6f063a9db8556a86bcb099b172e3f2d1a5f30

General

Target

7b5d6671f4be5a302b961b0649d6f063a9db8556a86bcb099b172e3f2d1a5f30
Size

269KB
MD5

43f231a46488dae57d24b826441f89b0
SHA1

59392eb9b1c22e0f780a17abf7b24453fe2cfa25
SHA256

7b5d6671f4be5a302b961b0649d6f063a9db8556a86bcb099b172e3f2d1a5f30
SHA512

da0c479a48e4e69e414b756434629f1894d2783605856c9fe41f3750926779bfed3396220d0b16a42373062cd2d6f11a7bef02643a0796a63c300567007b9c10
SSDEEP

6144:CYZVyqRGXu4jB0CWIvq0Oxmi2ewqjr7Wk5X:/jvJCLJ+miIAXWk

Score

N/A

Malware Config

Signatures

Files

7b5d6671f4be5a302b961b0649d6f063a9db8556a86bcb099b172e3f2d1a5f30
.exe windows x86

ed7fc820253919491c5f7ebfb68803d6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumChildWindows
GetDlgItem
SendMessageA
IsWindow
DestroyWindow
CreateWindowExW
GetWindowThreadProcessId

setupapi

CM_Get_Global_State
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

newdev

UpdateDriverForPlugAndPlayDevicesW

kernel32

AddAtomA
VirtualFree
GetSystemInfo
GetStdHandle
TlsSetValue
SetHandleCount
TlsGetValue
WriteFile
UnhandledExceptionFilter
FreeEnvironmentStringsW
FreeEnvironmentStringsA
TlsFree
QueryPerformanceCounter
GetFileType
GetVersionExA
GetCPInfo
GetLocaleInfoA
GetStartupInfoA
HeapCreate
IsBadWritePtr
GetSystemTimeAsFileTime
EnumResourceNamesW
VirtualAlloc
InterlockedExchange
lstrcatW
VirtualQuery
GetModuleFileNameA
TlsAlloc
SetLastError
HeapDestroy
GetEnvironmentStringsW
GetCurrentProcess
GetOEMCP
GetACP
GetCurrentProcessId
TerminateProcess
GetEnvironmentStrings
SetEndOfFile
HeapSize
SetUnhandledExceptionFilter

iphlpapi

GetIpAddrTable

mprapi

MprConfigServerConnect
MprConfigServerDisconnect
MprConfigGetFriendlyName

shell32

SHGetFolderPathW

Sections

.text
Size: 137KB - Virtual size: 285KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ed7fc820253919491c5f7ebfb68803d6

Headers

File Characteristics

Imports

user32

setupapi

newdev

kernel32

iphlpapi

mprapi

shell32

Sections

.text Size: 137KB - Virtual size: 285KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 128KB - Virtual size: 127KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 137KB - Virtual size: 285KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 128KB - Virtual size: 127KB

.rsrc
Size: 512B - Virtual size: 4KB