8f7dfb828a78fe6a3a2411df41fd0ec2f5c439e2e26b6676374a0990eda8fe30

Sharing

Copy URL Twitter E-mail

General

Target

8f7dfb828a78fe6a3a2411df41fd0ec2f5c439e2e26b6676374a0990eda8fe30
Size

152KB
MD5

795a78f0f1af605f2a1fad88db8605e0
SHA1

0f3506aa153ef8ae895c6ef7c8e4555c92a71697
SHA256

8f7dfb828a78fe6a3a2411df41fd0ec2f5c439e2e26b6676374a0990eda8fe30
SHA512

e108a10d0a215fe65348037b8fa6266c6f8fac4f3a867fca2b8d99560c9c91ba1e23895921e6832e335af2d03cb217fb65a5b4326db1bbf46fd138c30ba532d4
SSDEEP

3072:l6HgRmZpzy8rk2BXyGSK9t6fIwqDM4KBcpa9Sn6Zrl9UJ3NT7jFV4J5i5MxjAlsR:l6+wpFrknGSK9t6fIwqwcgSn6tUJ9H6R

Score

N/A

Malware Config

Signatures

Files

8f7dfb828a78fe6a3a2411df41fd0ec2f5c439e2e26b6676374a0990eda8fe30
.exe windows x86

3ed303ded2c9db5dd42b674b1d846c1c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

psapi

GetModuleFileNameExA

kernel32

GetVersionExA
lstrlenA
MultiByteToWideChar
lstrcpynA
FindResourceA
LoadResource
FreeLibrary
lstrlenW
EnterCriticalSection
IsDBCSLeadByte
lstrcmpiA
LoadLibraryExA
GetModuleHandleA
DeleteFileA
CopyFileExA
CreateToolhelp32Snapshot
Process32First
Process32Next
Thread32First
OpenProcess
CloseHandle
Thread32Next
WaitForSingleObject
TerminateProcess
GetCurrentProcess
CreateProcessA
SetFileAttributesA
CreateMutexA
GetLastError
RaiseException
GetCurrentThreadId
InterlockedDecrement
SetEvent
GetCommandLineA
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
Sleep
GetModuleFileNameA
lstrcatA
lstrcpyA
CreateEventA
CreateThread
GetThreadLocale
WideCharToMultiByte
SizeofResource
GetTickCount
LoadLibraryA
GetLocaleInfoW
SetFilePointer
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
SetUnhandledExceptionFilter
GetCurrentProcessId
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
WriteFile
GetOEMCP
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
TlsGetValue
TlsSetValue
TlsFree
GetLocaleInfoA
GetACP
InterlockedExchange
IsBadReadPtr
IsBadCodePtr
SetStdHandle
FlushFileBuffers
LeaveCriticalSection
SetLastError
TlsAlloc
HeapSize
GetProcAddress
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
ExitProcess
GetStartupInfoA
GetCPInfo
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapFree
HeapAlloc
HeapReAlloc
GetSystemTimeAsFileTime

user32

GetWindowLongA
GetWindowTextA
UnregisterClassA
DefWindowProcA
EnumThreadWindows
SetWindowLongA
DestroyWindow
CreateWindowExA
PeekMessageA
LoadStringW
CharLowerBuffA
SetActiveWindow
ShowWindow
GetSystemMetrics
GetWindowRect
GetClassNameA
GetWindow
IsWindow
DispatchMessageA
TranslateMessage
GetMessageA
CharNextA
CharUpperA
LoadStringA
RegisterClassA
PostThreadMessageA

advapi32

RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteKeyA
RegQueryValueExA
RegDeleteValueA
RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegCreateKeyExA

shell32

SHGetFolderPathA

ole32

CoInitialize
CoUninitialize
CoTaskMemRealloc
CoRegisterClassObject
CoRevokeClassObject
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CoCreateInstance

oleaut32

SysStringByteLen
SysAllocStringByteLen
SysAllocStringLen
VarBstrCmp
VariantChangeType
SysFreeString
SysAllocString
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi
LoadRegTypeLi
SysStringLen
VariantClear
VarUI4FromStr
VariantInit

shlwapi

PathFindExtensionA

Sections

.text
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ed303ded2c9db5dd42b674b1d846c1c

Headers

File Characteristics

Imports

version

psapi

kernel32

user32

advapi32

shell32

ole32

oleaut32

shlwapi

Sections

.text Size: 116KB - Virtual size: 112KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 4KB - Virtual size: 10KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 116KB - Virtual size: 112KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 4KB - Virtual size: 10KB

.rsrc
Size: 4KB - Virtual size: 3KB