b5fd08fc4c65cb3d840cd8edbfa43031a9bb5bf23ac492e21260728ddeb4d116

General

Target

b5fd08fc4c65cb3d840cd8edbfa43031a9bb5bf23ac492e21260728ddeb4d116
Size

149KB
MD5

efbaaae70b768e7ed24df13408838d58
SHA1

58694531ee8c56f5c73544569c438a7ec736b792
SHA256

b5fd08fc4c65cb3d840cd8edbfa43031a9bb5bf23ac492e21260728ddeb4d116
SHA512

666627dba166b5deab13ed153bfd664b66d71be8b64ba826e23f643a9fc513146c23bd3fac2fcfcc6c2798d3f81d123dc37537012679f7e88cc9eda66b3cc51f
SSDEEP

3072:Z3ZwD6zHkYXGnoGpeZiIkUCJuPa/Xf0IL0R7:ZpwDeHkYXGoGp9NDf10h

Score

N/A

Malware Config

Signatures

Files

b5fd08fc4c65cb3d840cd8edbfa43031a9bb5bf23ac492e21260728ddeb4d116
.exe windows x86

8d8df12706e6abcd23238fb08f9e67f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
TerminateProcess
OpenProcess
MultiByteToWideChar
lstrlenA
FreeLibrary
GetSystemDirectoryA
SetFileTime
SystemTimeToFileTime
CreateFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
WinExec
GetModuleFileNameA
GetEnvironmentVariableA
lstrcpyA
UnmapViewOfFile
DeleteFileA
GetModuleHandleA
MapViewOfFile
CreateFileMappingA
GetFileSize
LoadLibraryExA
lstrcmpiA
SetFileAttributesA
CopyFileA
MoveFileExA
FindNextFileA
FindFirstFileA
GetDriveTypeA
GetLogicalDriveStringsA
GetCurrentProcess
GlobalFree
GetVersionExA
GetTempPathA
Sleep
MoveFileA
GetWindowsDirectoryA
lstrcpyW
WaitForSingleObject
CreateThread
GetCurrentThreadId
GetLastError
DeviceIoControl
CloseHandle
LoadLibraryA
GlobalAlloc
GetProcAddress

user32

wsprintfA

ole32

CoCreateGuid

msvcrt

strlen
_strnicmp
strcmp
fseek
wcscpy
sprintf
memset
??3@YAXPAX@Z
??2@YAPAXI@Z
memcmp
wcslen
memcpy
fclose
fwrite
fopen
strcat
strcpy
_wcsnicmp
strncpy
free
malloc
swprintf

shlwapi

StrStrIA

ws2_32

WSCEnumProtocols
WSCWriteProviderOrder
WSCInstallProvider
WSCGetProviderPath
WSCDeinstallProvider

Sections

.data
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d8df12706e6abcd23238fb08f9e67f0

Headers

File Characteristics

Imports

kernel32

user32

ole32

msvcrt

shlwapi

ws2_32

Sections

.data Size: 147KB - Virtual size: 147KB

.rsrc Size: 512B - Virtual size: 16B

.data
Size: 147KB - Virtual size: 147KB

.rsrc
Size: 512B - Virtual size: 16B