94022c81e77556290fcd46398ba9fccc6e503085479f44ba17d25845522828df

Sharing

Copy URL Twitter E-mail

General

Target

94022c81e77556290fcd46398ba9fccc6e503085479f44ba17d25845522828df
Size

273KB
MD5

7899f28ab19532a9b77e5863f5b0aff1
SHA1

b84cfd784dc788ab6dd548b4ef6100e62626f5d2
SHA256

94022c81e77556290fcd46398ba9fccc6e503085479f44ba17d25845522828df
SHA512

789cc21256c6fd404be2c53bda74d5bf4c52389b0a3501b79761267e6f6bd59a43a993100120d6fd1ce40b2a43aac813189fc90a2077f6a07ff1353ae96f4f20
SSDEEP

6144:U6N8A/S4oE61IUSQ4OHdvGtneiTqmKrFviraO/SH:USKQeSQ4U0VeilcFvE/i

Score

N/A

Malware Config

Signatures

Files

94022c81e77556290fcd46398ba9fccc6e503085479f44ba17d25845522828df
.exe windows x86

e8ec2f319b7794323092c18dbc33945b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

ws2_32

WSACleanup
inet_ntoa
gethostbyname
gethostname
WSAStartup

kernel32

GetProcessHeap
RaiseException
CreateMutexW
CreateDirectoryW
RemoveDirectoryW
SetErrorMode
GetExitCodeThread
MoveFileW
GetSystemTime
GetCurrentThreadId
IsDebuggerPresent
SetUnhandledExceptionFilter
GetSystemDirectoryW
FileTimeToSystemTime
GlobalAlloc
lstrlenW
lstrcmpiW
DosDateTimeToFileTime
ExpandEnvironmentStringsA
WaitForSingleObject
CreateEventW
LoadResource
FindResourceW
FreeLibrary
LocalFree
lstrlenA
OpenEventW
SystemTimeToFileTime
GetLocalTime
GetModuleHandleW
GetTempPathW
lstrcmpA
GetProcAddress

user32

GetForegroundWindow
MessageBoxW

advapi32

SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegSetValueExW
RegCreateKeyExW
RegDeleteValueW
CreateProcessAsUserW
SetSecurityInfo
SetEntriesInAclW
BuildExplicitAccessWithNameW
GetSecurityDescriptorDacl
GetSecurityInfo
DuplicateTokenEx
RegQueryValueExA
RegOpenKeyExA
DeregisterEventSource
ReportEventW
RegisterEventSourceW
GetTokenInformation
OpenProcessToken
ControlService
QueryServiceStatus
CloseServiceHandle
OpenServiceW
OpenSCManagerW
StartServiceW
QueryServiceConfigW
ImpersonateLoggedOnUser
RevertToSelf
SetThreadToken
LookupAccountSidW
GetUserNameW

shell32

ShellExecuteW

shlwapi

PathGetDriveNumberW

cryptui

CryptUIDlgSelectCA
CryptUIDlgViewContext
CryptUIDlgViewCertificateA
I_CryptUIProtect
CryptUIDlgViewCRLA
CryptUIDlgViewCertificateW

mpr

WNetGetConnectionA
MultinetGetConnectionPerformanceA
WNetGetUserW
WNetGetProviderNameW
WNetAddConnection3W
WNetAddConnection2W
WNetSupportGlobalEnum
WNetConnectionDialog
MultinetGetErrorTextW

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.hv
Size: 7KB - Virtual size: 948KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ejwQDK
Size: 9KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tB
Size: 110KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.FVC
Size: 102KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e8ec2f319b7794323092c18dbc33945b

Headers

File Characteristics

Imports

version

ws2_32

kernel32

user32

advapi32

shell32

shlwapi

cryptui

mpr

Sections

.text Size: 14KB - Virtual size: 14KB

.hv Size: 7KB - Virtual size: 948KB

.rdata Size: 3KB - Virtual size: 33KB

.ejwQDK Size: 9KB - Virtual size: 2.0MB

.tB Size: 110KB - Virtual size: 113KB

.data Size: 6KB - Virtual size: 311KB

.FVC Size: 102KB - Virtual size: 158KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 14KB - Virtual size: 14KB

.hv
Size: 7KB - Virtual size: 948KB

.rdata
Size: 3KB - Virtual size: 33KB

.ejwQDK
Size: 9KB - Virtual size: 2.0MB

.tB
Size: 110KB - Virtual size: 113KB

.data
Size: 6KB - Virtual size: 311KB

.FVC
Size: 102KB - Virtual size: 158KB

.rsrc
Size: 18KB - Virtual size: 18KB