88bde172dbfe067f929ca4cb7ef6e3b4b7a0af5bdee1a61af24e386c44746cfe

General

Target

88bde172dbfe067f929ca4cb7ef6e3b4b7a0af5bdee1a61af24e386c44746cfe
Size

166KB
MD5

4af828bdc705148288dcaf5c10828a0b
SHA1

0699cb3d6b303dc8c2cc0008240e24bb93ad6773
SHA256

88bde172dbfe067f929ca4cb7ef6e3b4b7a0af5bdee1a61af24e386c44746cfe
SHA512

4e2259d8f850f2ae87ec236ac355b25fd5dd856d8f187066162f14e3c71e65e18f626c932fd81f59b03d944c6ac8ded4c3324ad23c2c00ef72bb36dc6f5c729f
SSDEEP

3072:SFi9W3/gZV9V5ftFAXrJ0GOsKEuYWTB74R+Fzb8jp3ul+Fuk:N+/gZjPEJ0aKEuYWVdX8jpJu

Score

N/A

Malware Config

Signatures

Files

88bde172dbfe067f929ca4cb7ef6e3b4b7a0af5bdee1a61af24e386c44746cfe
.exe windows x86

43d7e05342718d3f9867c65411f63cc0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
EnterCriticalSection
InterlockedIncrement
GetStdHandle
GetCPInfoExW
TlsGetValue
GetStartupInfoA
TlsSetValue
GetOEMCP
GetFileType
UnhandledExceptionFilter
MultiByteToWideChar
DeleteCriticalSection
SetHandleCount
GetACP
FreeEnvironmentStringsW
InitializeCriticalSection
EnumResourceTypesA
GetLastError
GetThreadLocale
WriteFile
LeaveCriticalSection
lstrlenW
GetLocaleInfoA
RaiseException
HeapSize
GetLogicalDriveStringsA
GetTickCount
FreeEnvironmentStringsA
GetEnvironmentStringsW
GetCPInfo
QueryPerformanceCounter
InterlockedExchange
GetVersionExA
GetEnvironmentStrings
GetCurrentProcessId

ole32

CoGetTreatAsClass
CoCreateInstance
StringFromGUID2
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc

gdi32

GetDeviceCaps
DeleteObject
GetTextExtentPointA
GetTextMetricsA
SelectObject
CreateFontIndirectA

newdev

UpdateDriverForPlugAndPlayDevicesW

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43d7e05342718d3f9867c65411f63cc0

Headers

File Characteristics

Imports

kernel32

ole32

gdi32

newdev

Sections

.text Size: 98KB - Virtual size: 98KB

.tls Size: 1KB - Virtual size: 1KB

.data Size: 64KB - Virtual size: 63KB

.reloc Size: 1024B - Virtual size: 100KB

.text
Size: 98KB - Virtual size: 98KB

.tls
Size: 1KB - Virtual size: 1KB

.data
Size: 64KB - Virtual size: 63KB

.reloc
Size: 1024B - Virtual size: 100KB