93446aded2b2f4d463186fb1e2838adc3df699da1e6861e7d203535cf0cd5ca0

Sharing

Copy URL Twitter E-mail

General

Target

93446aded2b2f4d463186fb1e2838adc3df699da1e6861e7d203535cf0cd5ca0
Size

210KB
MD5

d24d6b4b5623bd92e009632b1e5b6e7c
SHA1

90241626bd6fa1a8a8e5753439494be6eeed2c25
SHA256

93446aded2b2f4d463186fb1e2838adc3df699da1e6861e7d203535cf0cd5ca0
SHA512

9aa885e8a729f6b99cb9704532f9791df670bdaf42cd64c1f6ee7fddb80efe78cc0736ea5d9a95a2520c0f4f3e015f4ef6015f89d0818b96cee96f9aea3ba392
SSDEEP

3072:Y4d3JT1E9mKFVuRwA0W7PlcX8a6ou7i2Sqd31myMbcPWbsItXf:Y4f2/KwXW7dXa6uq11myMbcPWbss

Score

N/A

Malware Config

Signatures

Files

93446aded2b2f4d463186fb1e2838adc3df699da1e6861e7d203535cf0cd5ca0
.exe windows x86

4be0a5805f1a24c957c510ec9550958c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageW
DeleteCriticalSection
LocalFree
LoadLibraryA
DeleteCriticalSection
LoadLibraryA
SetEvent
lstrlenW
TerminateProcess
GetCurrentThreadId
CreateFileW
LoadLibraryW
GetCommandLineA
WaitForSingleObject
LocalFree
GetStartupInfoW
CreateFileW
MultiByteToWideChar

user32

EndDialog
GetWindowTextW
RegisterClassExW
UpdateWindow
CreateWindowExW
GetFocus
SetCursor
ReleaseDC
WinHelpW
WinHelpW
DestroyMenu
PostQuitMessage
LoadImageW
PeekMessageW
GetKeyState
wsprintfA
OffsetRect
EndDialog

advapi32

GetTokenInformation
RegSetValueExW
RegOpenKeyExA
FreeSid
RegQueryValueExW
InitializeAcl
RegDeleteKeyW
GetLengthSid
CloseServiceHandle
RegCreateKeyExA
InitializeAcl
AdjustTokenPrivileges
RegSetValueExW
RegSetValueExA
OpenProcessToken
RegSetValueExW
RegOpenKeyW
RegEnumKeyExW
RegSetValueExA
FreeSid
AdjustTokenPrivileges
OpenThreadToken
AllocateAndInitializeSid
RegQueryInfoKeyW
AdjustTokenPrivileges
OpenProcessToken
AddAccessAllowedAce
AllocateAndInitializeSid
FreeSid
AddAccessAllowedAce
InitializeSecurityDescriptor
GetLengthSid
RegEnumKeyExW
RegQueryValueExW
RegOpenKeyW
OpenProcessToken
AllocateAndInitializeSid
RegEnumKeyExW
AdjustTokenPrivileges
RegSetValueExA
GetLengthSid
RegDeleteValueW
FreeSid
InitializeSecurityDescriptor
RegDeleteKeyW
GetTokenInformation
RegSetValueExW
RegOpenKeyExW
FreeSid
RegCreateKeyExA
OpenProcessToken
AllocateAndInitializeSid
RegDeleteKeyW
AddAccessAllowedAce
GetTokenInformation
RegOpenKeyExW
RegOpenKeyExA
GetTokenInformation
RegDeleteKeyW

Sections

.idata
Size: 181KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

.fdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.fdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 512B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4be0a5805f1a24c957c510ec9550958c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.idata Size: 181KB - Virtual size: 184KB

.idata Size: 2KB - Virtual size: 4KB

.idata Size: 1024B - Virtual size: 4KB

.fdata Size: 2KB - Virtual size: 4KB

.fdata Size: 2KB - Virtual size: 4KB

.fdata Size: 13KB - Virtual size: 16KB

.fdata Size: 1024B - Virtual size: 4KB

.fdata Size: 3KB - Virtual size: 4KB

.fdata Size: 3KB - Virtual size: 4KB

Size: 512B - Virtual size: 512B

.idata
Size: 181KB - Virtual size: 184KB

.idata
Size: 2KB - Virtual size: 4KB

.idata
Size: 1024B - Virtual size: 4KB

.fdata
Size: 2KB - Virtual size: 4KB

.fdata
Size: 2KB - Virtual size: 4KB

.fdata
Size: 13KB - Virtual size: 16KB

.fdata
Size: 1024B - Virtual size: 4KB

.fdata
Size: 3KB - Virtual size: 4KB

.fdata
Size: 3KB - Virtual size: 4KB