fd78b144ea28c3ee34c0d6c8a584062f4b8882f86e29b2f3401f37843c447d65

Sharing

Copy URL Twitter E-mail

General

Target

fd78b144ea28c3ee34c0d6c8a584062f4b8882f86e29b2f3401f37843c447d65
Size

80KB
MD5

44d5cb33d272d86d99adaa173216ff7a
SHA1

3ab5c9ed8506b3a5343c037ca52b4f57c69694ab
SHA256

fd78b144ea28c3ee34c0d6c8a584062f4b8882f86e29b2f3401f37843c447d65
SHA512

fea999f7b36ce2abc99717c137133bb15bddd3c149f455b5a395fda9c8b6772fe476a77ece55904ec443067d49f166020e596b645b6af23c1528c0df5a1b549d
SSDEEP

1536:lXC6rER/x0cKSlTRdDfeqeYTT/Yf/T08VNY30iwcLvimaSFAy+:lXNri/mcKSlTRdDzjQ/T7VNY30iwcLvC

Score

N/A

Malware Config

Signatures

Files

fd78b144ea28c3ee34c0d6c8a584062f4b8882f86e29b2f3401f37843c447d65
.exe windows x86

b0487a6ff69f69eebc05ca5a20f89bb9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetOEMCP
GetACP
SetFilePointer
GetStringTypeA
WriteFile
TlsGetValue
TlsAlloc
TlsSetValue
GetStartupInfoA
GetFileType
GetStdHandle
GetStringTypeW
FlushFileBuffers
SetStdHandle
PulseEvent
GetSystemPowerStatus
lstrcmpiW
TerminateThread
GetSystemDirectoryW
GetVersionExW
SetEvent
InitializeCriticalSection
GetModuleHandleW
CreateEventW
WaitForMultipleObjects
DeleteCriticalSection
GetUserDefaultLangID
GetLastError
GetThreadLocale
LocalAlloc
lstrcpyW
lstrlenW
SetLastError
Sleep
FreeLibrary
LoadLibraryW
CreateThread
EnterCriticalSection
LeaveCriticalSection
GlobalAlloc
FormatMessageW
LocalFree
GlobalFree
GetCurrentThreadId
GetProcAddress
CreateProcessW
WaitForSingleObject
CloseHandle
GetCPInfo
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
InterlockedDecrement
InterlockedIncrement
RtlUnwind
HeapFree
HeapAlloc
GetCommandLineA
GetVersion
ExitProcess
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
LCMapStringW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW

user32

SystemParametersInfoW
wsprintfW
GetUserObjectInformationW
PostQuitMessage
DefWindowProcW
RegisterClassExW
CreateWindowExW
GetMessageW
DispatchMessageW
PostThreadMessageW
GetWindowThreadProcessId
FindWindowExW
GetThreadDesktop
OpenDesktopW
OpenInputDesktop
SetThreadDesktop
CloseDesktop
OpenWindowStationW
SetProcessWindowStation
GetDesktopWindow
ChangeDisplaySettingsExW
GetTopWindow
GetWindow
GetClassNameW
EnumDisplaySettingsW
PostMessageW

gdi32

CreateDCW
DeleteDC
ExtEscape

advapi32

AddAce
RegEnumValueW
RegCreateKeyExW
RegSetValueExW
ConvertStringSidToSidW
FreeSid
RegisterServiceCtrlHandlerW
SetServiceStatus
StartServiceCtrlDispatcherW
RegSetKeySecurity
RegQueryInfoKeyW
RegEnumKeyExW
IsValidSid
RegGetKeySecurity
IsValidSecurityDescriptor
GetSecurityDescriptorDacl
GetAclInformation
GetAce
GetLengthSid
InitializeAcl
AddAccessAllowedAceEx
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegDeleteValueW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW
OpenServiceW
ControlService
QueryServiceStatus
DeleteService
OpenSCManagerW
CreateServiceW
CloseServiceHandle
RegOverridePredefKey
CreateProcessAsUserW
GetTokenInformation
LookupAccountSidW

userenv

LoadUserProfileW
UnloadUserProfile

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0487a6ff69f69eebc05ca5a20f89bb9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

userenv

Sections

.text Size: 44KB - Virtual size: 42KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 20KB - Virtual size: 24KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 44KB - Virtual size: 42KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 20KB - Virtual size: 24KB

.rsrc
Size: 4KB - Virtual size: 3KB