8afbc2d78d23ddd2e07c07d97df66cbc60765ea3791598f3a3d205efc329ac75

Sharing

Copy URL Twitter E-mail

General

Target

8afbc2d78d23ddd2e07c07d97df66cbc60765ea3791598f3a3d205efc329ac75
Size

169KB
MD5

88f58a7a60b2dc538934f95ea195cdba
SHA1

10b26f76e2700c2192601b245b1e66f44f92317f
SHA256

8afbc2d78d23ddd2e07c07d97df66cbc60765ea3791598f3a3d205efc329ac75
SHA512

8f336639df1ca902effb08242071158cd65c975070f922a171dfb3280f7bd3be772854124fc072d95fd4820593c6c14e4a8588bb2b61a32972d8d60893c7a2e8
SSDEEP

3072:svBZhq0qJFIbIRw0+fUYv+RY8JIaeQOcYGQWe8fU5F65LIp7uJcDvh:Yf5GLRkfsIpLWBs5FRp7uJk5

Score

N/A

Malware Config

Signatures

Files

8afbc2d78d23ddd2e07c07d97df66cbc60765ea3791598f3a3d205efc329ac75
.exe windows x86

89dd6622f536e3c72bdbec74ab9b9225

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

ChangeServiceConfigW
CloseServiceHandle
ControlService
ConvertStringSecurityDescriptorToSecurityDescriptorW
CreateServiceW
OpenSCManagerW
OpenServiceW
QueryServiceConfigW
RegCloseKey
RegCreateKeyExW
RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
RegSetKeySecurity
RegSetValueExW
StartServiceW

msvcrt

_vsnwprintf
_except_handler3
wcscmp

shell32

SHExtractIconsW
ShellExecuteW

setupapi

CMP_UnregisterNotification
CM_Create_Range_List
SetupCloseLog
SetupDiCreateDevRegKeyW
SetupDiGetClassInstallParamsW
SetupDiGetDeviceRegistryPropertyW
SetupDiInstallDevice
SetupDiOpenDevRegKey
SetupDiSetClassInstallParamsW
SetupLogErrorW
SetupOpenLog

user32

GetDlgItem
GetParent
GetWindowLongW
GetWindowTextW
EndDialog
SendMessageW
SetWindowLongW
SetWindowTextW
ShowWindow
IsWindowEnabled
EnableWindow
LoadStringW
DialogBoxParamW

kernel32

DeviceIoControl
lstrcpynW
lstrcmpiW
VirtualProtect
VirtualFree
VirtualAlloc
VerifyVersionInfoW
VerSetConditionMask
UnhandledExceptionFilter
TerminateProcess
SetUnhandledExceptionFilter
SetLastError
QueryPerformanceCounter
OutputDebugStringW
MultiByteToWideChar
LocalAlloc
GetWindowsDirectoryW
GetTickCount
GetSystemTimeAsFileTime
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetLastError
GetCurrentThreadId
GetCurrentProcess
GetComputerNameW
ExitProcess
DisableThreadLibraryCalls
CreateFileW
CloseHandle
CompareStringW
lstrlenW

gdi32

GetAspectRatioFilterEx
CloseEnhMetaFile

Exports

Exports

APCMDecode
AStatus
CryptFreeFunc
GetDllMajorVersion
GetIndexInfo
SetSystemParameter
StrToUintA

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

89dd6622f536e3c72bdbec74ab9b9225

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

msvcrt

shell32

setupapi

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 35KB

.rdata Size: 86KB - Virtual size: 86KB

.data Size: 41KB - Virtual size: 41KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 36KB - Virtual size: 35KB

.rdata
Size: 86KB - Virtual size: 86KB

.data
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 5KB - Virtual size: 5KB