8bc58914295cca5c30acbec5d45b5c5bde895342cf3eb6a82b00a850dc6809cc

Sharing

Copy URL

Twitter E-mail

General

Target

8bc58914295cca5c30acbec5d45b5c5bde895342cf3eb6a82b00a850dc6809cc
Size

43KB
MD5

99c6828b61f6cc44d0838b54e685fa89
SHA1

519ea31568aecf6357971578483bf142760aa3cf
SHA256

8bc58914295cca5c30acbec5d45b5c5bde895342cf3eb6a82b00a850dc6809cc
SHA512

bf814d1c04991da6c73d0e31b4ee64accb7a1c7f065b4cfe23328998329fe3589de5bdcde575b7a22f34fc05995101bdd2ee7dd05b5c155ef08942a5fa6738cf
SSDEEP

768:Nwz/YUioTHgL42bTdh2LLvbSE5viplNJcm5S2MbVPcj205sJ:CrYUALDbTdseAmlMJp0WJ

Score

N/A

Malware Config

Signatures

Files

8bc58914295cca5c30acbec5d45b5c5bde895342cf3eb6a82b00a850dc6809cc
.exe windows x86

b6978d5f08eec3f445e5ea4171ef790a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
SystemTimeToTzSpecificLocalTime
GetCommState
LoadLibraryA
GetSystemTimeAsFileTime
SetVolumeLabelA
VirtualAlloc
EndUpdateResourceA
FindVolumeMountPointClose
CreateThread
GetPrivateProfileSectionNamesA
Heap32ListNext
VDMConsoleOperation
GlobalGetAtomNameW
GetConsoleInputExeNameA
ReadConsoleInputA
Thread32First
AddLocalAlternateComputerNameW
RtlCaptureStackBackTrace
CancelDeviceWakeupRequest
GetModuleHandleA
RtlMoveMemory
SetConsoleTitleW
VirtualProtectEx
GlobalUnfix
RegisterWaitForSingleObject
SetHandleCount
PulseEvent
OpenWaitableTimerA
WritePrivateProfileStringA
SearchPathW
CreateEventA
GetSystemTime
FindCloseChangeNotification
CreateHardLinkW

msvcrt

_jn
asctime
_filbuf
__p__fileinfo
_adj_fdivr_m32i
_mbscoll
_adj_fpatan
exit
_fullpath
_adj_fdiv_m64
_wrmdir
_safe_fprem1
_set_error_mode
_tzset
_wtoi
isalpha
toupper
_mbbtype
??0bad_typeid@@QAE@PBD@Z
strtok
_wutime64
_pclose
_cputs
_ismbcalpha
_read
_ltoa
_wfindnext
_copysign
??_Fbad_typeid@@QAEXXZ
_itoa
_wfindfirst
_heapchk
___setlc_active_func
__set_app_type
_timezone
_wfsopen
_wperror
??_V@YAXPAX@Z
_assert
_ui64toa
__crtGetLocaleInfoW
__p__commode
_getdiskfree
_strupr
isalnum
_mbsnextc
difftime
__lc_collate_cp
__getmainargs
_mbsnicmp
_resetstkoflw
fgets
_mbscat
_wpopen
?unexpected@@YAXXZ
wctomb
_mbsicmp
_y1
_mbctoupper
_ismbcl1
rand
_setmaxstdio
??_Ebad_cast@@UAEPAXI@Z
signal

cfgmgr32

CM_Merge_Range_List
CM_Detect_Resource_Conflict
CM_Connect_MachineA
CM_Setup_DevNode_Ex
CM_Get_Next_Res_Des
CM_Query_Resource_Conflict_List
CM_Connect_MachineW
CM_Get_Depth_Ex
CM_Add_Range
CM_Dup_Range_List
CM_Get_Depth
CM_Intersect_Range_List
CM_Register_Device_Interface_ExA
CM_Enable_DevNode_Ex
CM_Get_Class_Registry_PropertyA
CM_Query_Arbitrator_Free_Data_Ex
CM_Free_Log_Conf_Handle
CM_Get_Hardware_Profile_Info_ExA
CM_Run_Detection
CM_Get_Device_ID_List_Size_ExA
CM_Get_Device_Interface_List_SizeW
CM_Modify_Res_Des_Ex
CM_Query_And_Remove_SubTree_ExA
CM_Detect_Resource_Conflict_Ex
CM_Get_DevNode_Registry_PropertyA
CM_Get_Device_Interface_AliasW
CM_Get_Log_Conf_Priority_Ex
CMP_WaitServicesAvailable
CMP_WaitNoPendingInstallEvents
CM_Request_Eject_PC
CM_Set_DevNode_Problem_Ex
CM_Get_Res_Des_Data_Size_Ex
CM_Get_Device_ID_List_SizeW
CM_Register_Device_Driver
CM_Add_Res_Des_Ex
CM_Get_Log_Conf_Priority
CM_Uninstall_DevNode_Ex
CM_Free_Range_List
CM_Unregister_Device_InterfaceW
CM_Query_Arbitrator_Free_Size_Ex
CM_Get_DevNode_Registry_Property_ExA
CM_Get_Device_Interface_AliasA
CM_Get_DevNode_Registry_PropertyW
CM_Set_HW_Prof_FlagsW
CMP_Report_LogOn
CMP_RegisterNotification
CM_Is_Dock_Station_Present_Ex
CM_Get_Next_Res_Des_Ex
CM_Get_HW_Prof_FlagsA
CM_Get_Hardware_Profile_InfoW
CM_Free_Log_Conf
CM_Run_Detection_Ex
CM_Query_Arbitrator_Free_Size
CM_Move_DevNode_Ex
CM_Get_Device_Interface_ListA
CM_Add_ID_ExA
CM_Disable_DevNode_Ex
CM_Request_Eject_PC_Ex
CM_Get_Global_State_Ex
CM_Get_Parent

user32

DefWindowProcW
PostQuitMessage
RegisterClassW

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6978d5f08eec3f445e5ea4171ef790a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

cfgmgr32

user32

Sections

.text Size: 32KB - Virtual size: 32KB

.rdata Size: 8KB - Virtual size: 8KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 32KB - Virtual size: 32KB

.rdata
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 1KB - Virtual size: 1KB