81a06b6fae8d233aa0e5fbc0ee1301c85251410322be9e286d22285e276481fb

General

Target

81a06b6fae8d233aa0e5fbc0ee1301c85251410322be9e286d22285e276481fb
Size

278KB
MD5

e4b24e142f2e24a6110b589e74707d0c
SHA1

66368bf3dd192c741b33d6a9218a83047a5fd751
SHA256

81a06b6fae8d233aa0e5fbc0ee1301c85251410322be9e286d22285e276481fb
SHA512

d0c4833f230475ced3e27b91b9b165a66e3350006074e5f6fcc330e197989ea841c2c62c19e31ebd74978e1e7de13f20d1ac2cb2bbbac7a435377e3933f699a4
SSDEEP

6144:Obw9Xgm4XyF2taiy5OBGkA/ua3gP59iFOj6qVG3igtQmfZyV:uuXgmDkal5PkA/ua3o5KONGSgP

Score

N/A

Malware Config

Signatures

Files

81a06b6fae8d233aa0e5fbc0ee1301c85251410322be9e286d22285e276481fb
.exe windows x86

02ab8cdd98db8a3a3b842c231ac134f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExA
RegOpenKeyA
RegQueryValueA
RegEnumKeyExA
RegDeleteKeyA
RegOpenKeyExA
RegEnumKeyA
RegCloseKey

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

kernel32

GetExitCodeProcess
CloseHandle
UnmapViewOfFile
CreateFileW
AddAtomW
GetCommandLineA
WriteConsoleW
LocalAlloc
WaitForSingleObject
CreateWaitableTimerA
GetSystemTime
GetCurrentThreadId
CreateEventA
SetFileAttributesW
LocalFree
GetFileAttributesW
CreateFileMappingA
CreateThread
CreateProcessW
CopyFileW
EnumResourceNamesA
FileTimeToLocalFileTime
GetVersionExW
WriteFileGather
SetEvent
DeleteFileW
GetEnvironmentVariableW
GetModuleHandleW
GetTempPathW
FileTimeToSystemTime
LoadLibraryExW
GetSystemDirectoryW
CreateDirectoryW
MoveFileExW
MapViewOfFile
ResetEvent
CreateFileA

lz32

LZClose
LZCopy
LZOpenFileA

Sections

.text
Size: 138KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02ab8cdd98db8a3a3b842c231ac134f4

Headers

File Characteristics

Imports

advapi32

setupapi

kernel32

lz32

Sections

.text Size: 138KB - Virtual size: 270KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 136KB - Virtual size: 136KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 138KB - Virtual size: 270KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 136KB - Virtual size: 136KB

.rsrc
Size: 512B - Virtual size: 4KB