89b38c31841243e714c2003086232c9cb5a2af26090cdab8787b7f2aa8341cf0

Sharing

Copy URL Twitter E-mail

General

Target

89b38c31841243e714c2003086232c9cb5a2af26090cdab8787b7f2aa8341cf0
Size

177KB
MD5

4c565ce1add13c52f71f36207dd17f44
SHA1

1c93dd8d9d7dd1a0761194c2cdc7d40af3a196f4
SHA256

89b38c31841243e714c2003086232c9cb5a2af26090cdab8787b7f2aa8341cf0
SHA512

af18a84148540997c8b20e7ac7dcbe56f7a68918b7b03d3a8b0d492c5cd5b3b65d6bd432cf539d9379295ed72bb441a04b79dfd3c08b1285fa2a89e90c961658
SSDEEP

3072:cV16jb+lLsyCSQRIMzQga3dQGd08GvoTwlNkv+7AQz+ahPl:cDa+lLsHSQWsQgatzdGo4Nbskr

Score

N/A

Malware Config

Signatures

Files

89b38c31841243e714c2003086232c9cb5a2af26090cdab8787b7f2aa8341cf0
.exe windows x86

e42d633e63c29660e1c0b51c6fd9d551

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
??1type_info@@UAE@XZ
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
strstr
__CxxFrameHandler
??3@YAXPAX@Z
time
srand
rand
??2@YAPAXI@Z
_except_handler3
malloc
realloc

dbghelp

MakeSureDirectoryPathExists

kernel32

SetProcessWorkingSetSize
GetModuleHandleA
GetStartupInfoA
FreeLibrary
GetProcAddress
LoadLibraryA
HeapAlloc
GetProcessHeap
Process32Next
lstrlenA
WriteFile
CreateFileA
ExitProcess
CloseHandle
GetCurrentProcess
GlobalFree
GlobalAlloc
SetFileTime
LocalFileTimeToFileTime
lstrcpyA
GetCommandLineA
Sleep
lstrcatA
GetShortPathNameA
GetVersionExA
WritePrivateProfileStringA
CopyFileA
DeleteFileA
GetTempPathA
SetUnhandledExceptionFilter
GetLastError

user32

IsCharAlphaNumericA

advapi32

ControlService
OpenSCManagerA
RegOpenKeyExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
AllocateAndInitializeSid
GetLengthSid
InitializeAcl
AddAccessAllowedAce
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetKeySecurity
RegCloseKey
FreeSid
OpenServiceA
ChangeServiceConfigA
RegCreateKeyA
RegOpenKeyA

shell32

SHGetSpecialFolderPathA

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e42d633e63c29660e1c0b51c6fd9d551

Headers

File Characteristics

Imports

msvcrt

dbghelp

kernel32

user32

advapi32

shell32

Sections

.text Size: 21KB - Virtual size: 21KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 19KB - Virtual size: 20KB

.rsrc Size: 132KB - Virtual size: 131KB

.text
Size: 21KB - Virtual size: 21KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 19KB - Virtual size: 20KB

.rsrc
Size: 132KB - Virtual size: 131KB