8712292b3ab867d4128a83297c2507df3be712217ea7b0a347045a396f31af8b

Sharing

Copy URL

Twitter E-mail

General

Target

8712292b3ab867d4128a83297c2507df3be712217ea7b0a347045a396f31af8b
Size

1.1MB
MD5

ea6b3587b3e8815af030f45256f1d188
SHA1

276825ef7410d95e62a189c7ec580959c0f72739
SHA256

8712292b3ab867d4128a83297c2507df3be712217ea7b0a347045a396f31af8b
SHA512

caafa540846c7a35de1d5b36ec263a19ed06dfbb7b4a504994d0da1b8581d6948019d6709a68bf030494e8dcbf33ce8bf4c83cc75e6beefbe50393c1d7208588
SSDEEP

24576:yPa6fMw6UGlehyaIaXfmJlYIUQ0KNrQ9uRl/5:e8998QqcB5L

Score

N/A

Malware Config

Signatures

Files

8712292b3ab867d4128a83297c2507df3be712217ea7b0a347045a396f31af8b
.exe windows x86

fb8eecb19a440861c07c2985b3a6bf34

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableW
ExpandEnvironmentStringsW
SetFilePointer
WriteFile
GetLocalTime
OutputDebugStringW
ExitThread
HeapFree
CreateProcessW
GetModuleHandleW
MultiByteToWideChar
GetStdHandle
GetFileType
WriteConsoleW
SetLastError
GetConsoleOutputCP
SearchPathW
LocalAlloc
GetCommandLineW
CreateMutexA
WaitForSingleObject
ReleaseMutex
CopyFileA
ExpandEnvironmentStringsA
LocalFree
WritePrivateProfileStringA
UnhandledExceptionFilter
FindFirstFileA
FindNextFileA
CompareStringA
lstrcmpA
GetPrivateProfileSectionA
lstrcmpiA
lstrcpynA
lstrcpyA
GetWindowsDirectoryA
GetCommandLineA
GetCurrentDirectoryA
CreateFileW
LockResource
CreateFileA
lstrlenA
GetShortPathNameA
WritePrivateProfileSectionA
GetSystemDirectoryA
GetPrivateProfileStringA
FreeLibrary
LoadLibraryExA
SetFileAttributesA
GetStartupInfoA
InterlockedDecrement
SetCurrentDirectoryA
CreateDirectoryA
GetSystemInfo
GetVersionExA
HeapAlloc
GetProcessHeap
HeapReAlloc
GetStartupInfoW
GetLastError
GetProcAddress
LoadLibraryW
SetEvent
CloseHandle
WaitForMultipleObjects
WaitCommEvent
CreateEventW
SetCommMask
QueryPerformanceCounter
GetModuleHandleA
EscapeCommFunction
Sleep
ExitProcess
GetComputerNameW
ResetEvent
CreateThread
SetCurrentDirectoryW
GetSystemDirectoryW
FindFirstFileW
FindClose
SetFileAttributesW
GlobalAlloc
ReadFile
SetFileTime
DosDateTimeToFileTime
CreateDirectoryW
DeleteFileW
GetTempFileNameW
GetTempPathW
VerifyVersionInfoW
VerSetConditionMask
GetFileAttributesW
lstrcpynW
lstrcatA
FindNextFileW

user32

CharPrevA
CharNextA
LoadStringA
GetDlgItemTextA
DialogBoxParamA
CheckDlgButton
wsprintfW
GetDlgItem
SetFocus
ExitWindowsEx
LoadStringW

advapi32

RegDeleteValueA
RegSetValueExA
OpenProcessToken
RegOpenKeyExA
RegQueryValueExA
RegEnumValueA
RegQueryValueExW
RegOpenKeyExW
ReportEventW
RegisterEventSourceW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW
SetServiceStatus
RegCloseKey
RegCreateKeyExA

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHChangeNotify
SHGetDesktopFolder
SHFileOperationA

ole32

CoInitializeSecurity
CoCreateInstance
CoTaskMemFree
CoInitialize
CoUninitialize

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

msvcrt

fread
exit
wcsrchr
wcschr
wcstombs
swscanf
swprintf
wcsncpy
wprintf
wcscpy
atol
wcsncmp
printf
fwscanf
fwprintf
vswprintf
vfwprintf
free
malloc
fprintf
setlocale
wcslen
wcscat

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb8eecb19a440861c07c2985b3a6bf34

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

version

msvcrt

setupapi

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 40KB - Virtual size: 38KB

.data Size: 76KB - Virtual size: 2.2MB

.rsrc Size: 12KB - Virtual size: 9KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 40KB - Virtual size: 38KB

.data
Size: 76KB - Virtual size: 2.2MB

.rsrc
Size: 12KB - Virtual size: 9KB