98dc5e5d3efd00e1d7726570247f7118008262b443bbe9a6e7005aa507584736

Sharing

Copy URL Twitter E-mail

General

Target

98dc5e5d3efd00e1d7726570247f7118008262b443bbe9a6e7005aa507584736
Size

230KB
MD5

5beb2947a72c8b2352c086198696b71a
SHA1

fb8f7abef7630c5bb4cded00b1f4b6010ac8dbee
SHA256

98dc5e5d3efd00e1d7726570247f7118008262b443bbe9a6e7005aa507584736
SHA512

19f64c89b80ac30ae14760cec5875824fea2a5f57909661eaebd8d34b337997f6c4318199a78e374964f4485b9c7fdfefa7d6dca1078d5733052559307f91852
SSDEEP

3072:y1yZxJDMf+QoBr4u0lw8L+QTSZhqmH910:y1QxNMpoyuKw8RTi4mHb0

Score

N/A

Malware Config

Signatures

Files

98dc5e5d3efd00e1d7726570247f7118008262b443bbe9a6e7005aa507584736
.exe windows x86

0d2c375efa1962d02d79a291f22b6450

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
PropVariantClear
OleInitialize
OleUninitialize
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateInstance
CoInitialize

advapi32

CryptAcquireContextA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
ChangeServiceConfigA
CryptGenRandom
CryptReleaseContext
RegQueryValueExA
OpenSCManagerA
OpenServiceA
CreateServiceA
StartServiceA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumKeyExA
DeleteService
CloseServiceHandle
ControlService
QueryServiceStatus

gdi32

CreateCompatibleDC
BitBlt
DeleteDC
StretchBlt
SetStretchBltMode
CreateCompatibleBitmap
GetObjectA
GetCurrentObject
SetMapMode
CreateFontIndirectW
GetObjectW
GetDeviceCaps
SelectObject
DeleteObject
GetStockObject
SetBkMode
TextOutW
SetTextAlign
SetBkColor
SetTextColor
CreateSolidBrush
GetTextMetricsA
GetTextExtentPoint32W

kernel32

GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
HeapSize
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProcAddress
VirtualAlloc
GlobalSize
lstrcmpW
FreeEnvironmentStringsW
PostQueuedCompletionStatus
SetDefaultCommConfigA
lstrcpyA
CreateDirectoryExW
GetStartupInfoA
SetFileAttributesW
GetCommandLineW
SystemTimeToFileTime
GetLocalTime
GetExitCodeThread
WaitForSingleObject
GetModuleHandleA
InitializeCriticalSection
ResetEvent
SetEvent
CreateEventW
WaitForMultipleObjects
EnterCriticalSection
LeaveCriticalSection
SetEndOfFile
SetFileTime
ReadFile
SetFilePointer
GetFileSize
DeleteCriticalSection
FormatMessageW
lstrcpyW
LocalFree
SuspendThread
ResumeThread
TerminateThread
GetSystemDirectoryW
MulDiv
LoadLibraryA
GetModuleHandleW
GetDriveTypeW
CreateFileW
GetVersionExW
CreateThread
GetModuleFileNameW
lstrcmpiW
CloseHandle
SetCurrentDirectoryW
SetEnvironmentVariableW
GetTempPathW
GetUserDefaultLCID
GetUserDefaultUILanguage
GetOEMCP
GetACP
VirtualFree
DeleteFileW
FindNextFileW
RemoveDirectoryW
lstrlenW
GetSystemTimeAsFileTime
GetStdHandle
WriteFile
lstrlenA
ExpandEnvironmentStringsW
CreateDirectoryW
GetLastError
GetFileAttributesW
FindFirstFileW
FindClose
CompareFileTime
WideCharToMultiByte
MultiByteToWideChar
Sleep
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetStdHandle
GetFileType
GetConsoleCP
GetConsoleMode
SetHandleCount
RtlUnwind
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
ExitProcess
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
GetEnvironmentStringsW
HeapCreate
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetCPInfo
IsValidCodePage
HeapAlloc
HeapReAlloc
CreateFileA
FlushFileBuffers
RaiseException
GetLocaleInfoA

Sections

.myfud
Size: 178KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d2c375efa1962d02d79a291f22b6450

Headers

DLL Characteristics

File Characteristics

Imports

ole32

advapi32

gdi32

kernel32

Sections

.myfud Size: 178KB - Virtual size: 177KB

.data Size: 6KB - Virtual size: 29KB

.rsrc Size: 45KB - Virtual size: 44KB

.myfud
Size: 178KB - Virtual size: 177KB

.data
Size: 6KB - Virtual size: 29KB

.rsrc
Size: 45KB - Virtual size: 44KB