767b5c700e5e1e883acb698566703b4946c67e19cc1a8d29231ef6442829cc11

Sharing

Copy URL

Twitter E-mail

General

Target

767b5c700e5e1e883acb698566703b4946c67e19cc1a8d29231ef6442829cc11
Size

945KB
MD5

47230a4da10fa1e115f3f1fd2d3a3855
SHA1

68ada867dd3ad69e63c2c8f5934d262250779eb5
SHA256

767b5c700e5e1e883acb698566703b4946c67e19cc1a8d29231ef6442829cc11
SHA512

a39b07e0572d82d302c00295ec8ab5a7ec8a140187b5186c32f98b079c6efd6f8e889bcf75f85db100bd5a1053a484c21d709e6c59574835b6b370dc64bacf2c
SSDEEP

12288:yYMOVwtLblb/6pg4R9yUctSPGbEhvTFNUSwKGBkgq:yNOmt3L4ySKEhvTFNUSwKbD

Score

N/A

Malware Config

Signatures

Files

767b5c700e5e1e883acb698566703b4946c67e19cc1a8d29231ef6442829cc11
.exe windows x86

e082b786f4fcf98c9511f98f92cabe7a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
CloseHandle
ConvertDefaultLocale
CopyFileA
CreateDirectoryA
CreateEventA
CreateMutexA
CreateThread
DeleteFileA
DosDateTimeToFileTime
ExitProcess
FindClose
FindFirstFileA
FindNextFileA
FlushFileBuffers
FreeLibrary
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileSize
GetLastError
GetModuleHandleA
GetPrivateProfileIntA
GetPrivateProfileSectionA
GetPrivateProfileStringA
GetProcAddress
GetStartupInfoA
GetSystemInfo
GetModuleHandleW
GetTempFileNameA
GetTempPathA
GetTickCount
GetVersionExA
LoadLibraryExA
LocalFileTimeToFileTime
QueryPerformanceCounter
ReadFile
ReleaseMutex
RemoveDirectoryA
SetCurrentDirectoryA
SetEndOfFile
SetEvent
SetFileAttributesA
SetFilePointer
SetFileTime
SetLastError
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
WaitForSingleObject
WriteFile
WritePrivateProfileStringA
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpynA
lstrlenA
CreateFileA
GetSystemTimeAsFileTime
Sleep

user32

LoadIconW
LoadIconA

advapi32

RegOpenKeyA
RegQueryValueExA

ole32

CLSIDFromString
CoCreateInstance
CoInitializeEx
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize

Sections

.text
Size: 931KB - Virtual size: 930KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdat
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e082b786f4fcf98c9511f98f92cabe7a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

Sections

.text Size: 931KB - Virtual size: 930KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 528B

.rdat Size: 5KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 16B

.text
Size: 931KB - Virtual size: 930KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 528B

.rdat
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 16B