add4e2a2e8774b9d78e73497b995ff92670dd09f7d0c769c943ad1e057217e62

General

Target

add4e2a2e8774b9d78e73497b995ff92670dd09f7d0c769c943ad1e057217e62
Size

174KB
MD5

10b750d71a76e0a6c1495c3192bb960a
SHA1

530e60649bbc58d78d271d1bff5e9905d8af2b06
SHA256

add4e2a2e8774b9d78e73497b995ff92670dd09f7d0c769c943ad1e057217e62
SHA512

6e6222b6153728b00de60f329ae9ff5f909d2c2ce6a6bc623996db57e93d001c72435d9115fa520b294fe2a903b9300ab374590c15140e4d74df3916edb44516
SSDEEP

3072:LEfjF3/yl3EEDWobFxQpseuIBU/p8ZtfeG47RMIELEzJ4D3TPOlHDRu3:YfR3EpxWsebBi8X2H76ZkuDjmdg

Score

N/A

Malware Config

Signatures

Files

add4e2a2e8774b9d78e73497b995ff92670dd09f7d0c769c943ad1e057217e62
.exe windows x86

8db116d174549ab72d9893d86ef254a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

LZClose
LZCopy
LZOpenFileA

setupapi

CM_Get_Child
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

kernel32

VirtualAlloc
GetTickCount
VirtualFree
CreateDirectoryA
GetModuleFileNameA
CreateMutexA
GlobalLock
AddAtomW
GetFileSize
GetTempPathA
ReadFile
GetSystemTime
MultiByteToWideChar
SetFileAttributesA
GetVolumeInformationA
LocalFree
ReleaseMutex
Sleep
CopyFileA
DisableThreadLibraryCalls
QueryPerformanceCounter
EnumResourceNamesA
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
SetFilePointer
GetCurrentThreadId
DeleteCriticalSection
GetFileAttributesA
CreateFileA
GlobalUnlock
GetModuleFileNameW
WaitForSingleObject
WriteFileGather
GetSystemTimeAsFileTime
GetTempFileNameA
lstrlenA
DeviceIoControl
GetCurrentProcessId
GlobalFree
GetLastError
WideCharToMultiByte
CreateFileW
GetVersionExA
LocalAlloc
CloseHandle
DeleteFileA
FreeLibrary

advapi32

RegDeleteKeyA
RegOpenKeyExA
RegQueryValueA
RegOpenKeyA
RegEnumKeyExA
RegQueryValueExA
RegEnumKeyA
RegCloseKey

Sections

.text
Size: 93KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8db116d174549ab72d9893d86ef254a4

Headers

File Characteristics

Imports

lz32

setupapi

kernel32

advapi32

Sections

.text Size: 93KB - Virtual size: 232KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 77KB - Virtual size: 77KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 93KB - Virtual size: 232KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 77KB - Virtual size: 77KB

.rsrc
Size: 512B - Virtual size: 4KB