9aea4ee76efe9d1b7131d63b7d816cbdb0755de8b31bfe0a2458194795db9ad1

Sharing

Copy URL Twitter E-mail

General

Target

9aea4ee76efe9d1b7131d63b7d816cbdb0755de8b31bfe0a2458194795db9ad1
Size

180KB
MD5

e41564a2f9c5a867b7930db4e7226cc0
SHA1

fd0e792f8fae37afa2b02c3d088974381e95d2f9
SHA256

9aea4ee76efe9d1b7131d63b7d816cbdb0755de8b31bfe0a2458194795db9ad1
SHA512

1b996ccce27d4889ed742102406f07eaa6cba4027e3ffb17ed5d52282fc4c399f39c960bb7d19ffa64767a48e87efff74f798015d606ade58fd977d5b63d0d30
SSDEEP

3072:Bc4PqaaBeKeok/jqX88888888888888iC+GDEE7NQQ:BcBawLk/3C+GDHN

Score

N/A

Malware Config

Signatures

Files

9aea4ee76efe9d1b7131d63b7d816cbdb0755de8b31bfe0a2458194795db9ad1
.exe windows x86

cb7d3f7e84513b9ad0d9e5c18fcd5390

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiGetDeviceInstanceIdA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList

kernel32

CreateFileA
Sleep
GetVersionExA
GetSystemDefaultLangID
ReadFile
WideCharToMultiByte
LoadResource
FindResourceExA
LockResource
GetLastError
GetCurrentProcess
SetCurrentDirectoryA
GetProcAddress
SetFileAttributesA
CloseHandle
WriteFile
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetCPInfo
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
TerminateProcess
FindFirstFileA
FindNextFileA
DeleteFileA
FindClose
RemoveDirectoryA
GetCurrentDirectoryA
OpenFile
GetWindowsDirectoryA
WinExec
GetModuleFileNameA
GetStringTypeW
GetStringTypeA
LoadLibraryA
GetEnvironmentStrings
GetOEMCP
MultiByteToWideChar
ExitProcess
GetVersion
GetCommandLineA
LCMapStringW
LCMapStringA
GetStartupInfoA
HeapAlloc
GetACP
HeapFree
GetModuleHandleA

user32

SetCursor
LoadCursorA
DispatchMessageA
TranslateMessage
IsDialogMessageA
CreateDialogIndirectParamA
GetDesktopWindow
GetWindowRect
SetWindowPos
wsprintfA
GetMessageA
DestroyWindow
SetWindowTextA
SetDlgItemTextA
MessageBoxA
PostQuitMessage
ShowWindow
PostMessageA

advapi32

RegEnumKeyExA
SetSecurityDescriptorDacl
RegDeleteKeyA
OpenSCManagerA
InitializeAcl
AddAccessAllowedAce
RegSetKeySecurity
OpenProcessToken
GetTokenInformation
GetLengthSid
RegQueryValueExA
CloseServiceHandle
InitializeSecurityDescriptor
RegOpenKeyExA
RegEnumValueA
RegCloseKey
IsValidSecurityDescriptor

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vbkcsri
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ygktgiw
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cb7d3f7e84513b9ad0d9e5c18fcd5390

Headers

File Characteristics

Imports

setupapi

kernel32

user32

advapi32

Sections

.text Size: 28KB - Virtual size: 26KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 96KB - Virtual size: 96KB

vbkcsri Size: 32KB - Virtual size: 32KB

ygktgiw Size: 32KB - Virtual size: 32KB

.text
Size: 28KB - Virtual size: 26KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 96KB - Virtual size: 96KB

vbkcsri
Size: 32KB - Virtual size: 32KB

ygktgiw
Size: 32KB - Virtual size: 32KB