5eac6c8c6b570fe1b442b262310c1ef4aee47c7ecfdf15a5271688f757311f23

Sharing

Copy URL Twitter E-mail

General

Target

5eac6c8c6b570fe1b442b262310c1ef4aee47c7ecfdf15a5271688f757311f23
Size

251KB
MD5

1e99bcd2ac7e177942a9092300df4fd9
SHA1

6f3e350208585ba186f3dd58b2d880b5beaa6c6c
SHA256

5eac6c8c6b570fe1b442b262310c1ef4aee47c7ecfdf15a5271688f757311f23
SHA512

f2668c7a103b4c59c3b0262dc0757d35c65419339cedb79c51d45c6e691418c9a62d34309a3d558afee6506cc3f18cb030ff67568c291426daa355ffd82dc1da
SSDEEP

6144:iWcwX+LnkjmmBJ+daJzjAtPoPGhdBgpDQpSIjNv:iJwunk1JEaJMoOhdBgpczjNv

Score

N/A

Malware Config

Signatures

Files

5eac6c8c6b570fe1b442b262310c1ef4aee47c7ecfdf15a5271688f757311f23
.exe windows x86

7cf729c065156e6abe566590b756cc7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

SetSecurityDescriptorDacl
RegCloseKey
RegQueryValueExW
RegQueryInfoKeyW
RegCreateKeyExW
RegSetValueExW
InitializeSecurityDescriptor
RegOpenKeyExW
RegDeleteValueW
RegDeleteKeyW

kernel32

SetStdHandle
GetSystemTimeAsFileTime
LCMapStringW
IsValidLocale
SystemTimeToFileTime
GetTempPathA
GetCommandLineA
GetFileType
FreeEnvironmentStringsA
IsValidCodePage
WideCharToMultiByte
WriteConsoleA
SetUnhandledExceptionFilter
HeapFree
HeapReAlloc
CreateFileA
GetProcessHeap
EnumSystemLocalesA
CloseHandle
HeapDestroy
VirtualAlloc
GetConsoleOutputCP
TlsFree
GetStdHandle
GetACP
GetTimeFormatA
RtlUnwind
ReadFile
GetUserDefaultLCID
GetConsoleCP
SystemTimeToTzSpecificLocalTime
SetHandleCount
FlushFileBuffers
GetCurrentThreadId
LCMapStringA
UnhandledExceptionFilter
GetSystemTime
ExpandEnvironmentStringsA
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsW
GetOEMCP
SetEndOfFile
TlsAlloc
DeleteCriticalSection
TlsSetValue
EnterCriticalSection
WriteFile
GetModuleHandleA
GetSystemDirectoryA
HeapSize
VirtualFree
IsDebuggerPresent
TlsGetValue
SetLastError
SetFilePointer
FreeLibrary
FileTimeToSystemTime
HeapAlloc
WriteConsoleW
GetModuleHandleW
RaiseException
GetConsoleMode
LeaveCriticalSection
VirtualAllocEx

ole32

StringFromGUID2
CoIsOle1Class
CoDisconnectObject
OleInitialize
CoDosDateTimeToFileTime
CoCreateInstance

rpcrt4

UuidCreate

ws2_32

WSCGetProviderPath
WSCWriteProviderOrder
WSAStartup
WSACleanup
WSCDeinstallProvider
WSCInstallProvider
WSCEnumProtocols

sisbkup

SisRestoredLink

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 272KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7cf729c065156e6abe566590b756cc7a

Headers

File Characteristics

Imports

advapi32

kernel32

ole32

rpcrt4

ws2_32

sisbkup

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 272KB - Virtual size: 275KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 272KB - Virtual size: 275KB

.rsrc
Size: 11KB - Virtual size: 11KB