ff265cbaca878188e6f82c7857c3c03d4dfad0b604be02fa17b352e49989f2a7

Sharing

Copy URL

Twitter E-mail

General

Target

ff265cbaca878188e6f82c7857c3c03d4dfad0b604be02fa17b352e49989f2a7
Size

1.1MB
MD5

1ff4bd92015009330b7737e4ae19fc1a
SHA1

22ca4378a8cd4bd6496d88dc264f03dfe43a3a36
SHA256

ff265cbaca878188e6f82c7857c3c03d4dfad0b604be02fa17b352e49989f2a7
SHA512

c8f1640846a0a43bf549f90e102425b54fea78c5242f87f52359f06239605fba646dedbbdb0abb9529b066a0569b2a89999fd930e34d605e9a0ba0161d18337f
SSDEEP

24576:yPa6fbPHw4S909lO2AXj5ue8hYT0o0+ES1taI7rOpv3:erH1A09l+Tse8hYTvBES1eR3

Score

N/A

Malware Config

Signatures

Files

ff265cbaca878188e6f82c7857c3c03d4dfad0b604be02fa17b352e49989f2a7
.exe windows x86

fb8eecb19a440861c07c2985b3a6bf34

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableW
ExpandEnvironmentStringsW
SetFilePointer
WriteFile
GetLocalTime
OutputDebugStringW
ExitThread
HeapFree
CreateProcessW
GetModuleHandleW
MultiByteToWideChar
GetStdHandle
GetFileType
WriteConsoleW
SetLastError
GetConsoleOutputCP
SearchPathW
LocalAlloc
GetCommandLineW
CreateMutexA
WaitForSingleObject
ReleaseMutex
CopyFileA
ExpandEnvironmentStringsA
LocalFree
WritePrivateProfileStringA
UnhandledExceptionFilter
FindFirstFileA
FindNextFileA
CompareStringA
lstrcmpA
GetPrivateProfileSectionA
lstrcmpiA
lstrcpynA
lstrcpyA
GetWindowsDirectoryA
GetCommandLineA
GetCurrentDirectoryA
CreateFileW
LockResource
CreateFileA
lstrlenA
GetShortPathNameA
WritePrivateProfileSectionA
GetSystemDirectoryA
GetPrivateProfileStringA
FreeLibrary
LoadLibraryExA
SetFileAttributesA
GetStartupInfoA
InterlockedDecrement
SetCurrentDirectoryA
CreateDirectoryA
GetSystemInfo
GetVersionExA
HeapAlloc
GetProcessHeap
HeapReAlloc
GetStartupInfoW
GetLastError
GetProcAddress
LoadLibraryW
SetEvent
CloseHandle
WaitForMultipleObjects
WaitCommEvent
CreateEventW
SetCommMask
QueryPerformanceCounter
GetModuleHandleA
EscapeCommFunction
Sleep
ExitProcess
GetComputerNameW
ResetEvent
CreateThread
SetCurrentDirectoryW
GetSystemDirectoryW
FindFirstFileW
FindClose
SetFileAttributesW
GlobalAlloc
ReadFile
SetFileTime
DosDateTimeToFileTime
CreateDirectoryW
DeleteFileW
GetTempFileNameW
GetTempPathW
VerifyVersionInfoW
VerSetConditionMask
GetFileAttributesW
lstrcpynW
lstrcatA
FindNextFileW

user32

CharPrevA
CharNextA
LoadStringA
GetDlgItemTextA
DialogBoxParamA
CheckDlgButton
wsprintfW
GetDlgItem
SetFocus
ExitWindowsEx
LoadStringW

advapi32

RegDeleteValueA
RegSetValueExA
OpenProcessToken
RegOpenKeyExA
RegQueryValueExA
RegEnumValueA
RegQueryValueExW
RegOpenKeyExW
ReportEventW
RegisterEventSourceW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW
SetServiceStatus
RegCloseKey
RegCreateKeyExA

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHChangeNotify
SHGetDesktopFolder
SHFileOperationA

ole32

CoInitializeSecurity
CoCreateInstance
CoTaskMemFree
CoInitialize
CoUninitialize

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

msvcrt

fread
exit
wcsrchr
wcschr
wcstombs
swscanf
swprintf
wcsncpy
wprintf
wcscpy
atol
wcsncmp
printf
fwscanf
fwprintf
vswprintf
vfwprintf
free
malloc
fprintf
setlocale
wcslen
wcscat

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb8eecb19a440861c07c2985b3a6bf34

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

version

msvcrt

setupapi

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 40KB - Virtual size: 38KB

.data Size: 76KB - Virtual size: 2.2MB

.rsrc Size: 12KB - Virtual size: 9KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 40KB - Virtual size: 38KB

.data
Size: 76KB - Virtual size: 2.2MB

.rsrc
Size: 12KB - Virtual size: 9KB