927cb518146e9dff738b75767a3592d92b92750b27c667a24ef2cf54dfcb7a27

Sharing

Copy URL Twitter E-mail

General

Target

927cb518146e9dff738b75767a3592d92b92750b27c667a24ef2cf54dfcb7a27
Size

133KB
MD5

0badefc12b5153a4aaa8dcd502a8c424
SHA1

46063092c6952a73e6a11dd056200d2e789335d6
SHA256

927cb518146e9dff738b75767a3592d92b92750b27c667a24ef2cf54dfcb7a27
SHA512

8e64548911629de53249e99b15978b0defa0cd080763cd3521d0a43e2d82274139c59103025ff0e41fd674bc2dfbe1f9086bb5b3baf994f2dad2d53fcbe36233
SSDEEP

3072:tnjadPmOkCQ+64pxzoKV7RIfIoEQj3qfQK:tnWdPmOg+64zo47RAtEQbqfQK

Score

N/A

Malware Config

Signatures

Files

927cb518146e9dff738b75767a3592d92b92750b27c667a24ef2cf54dfcb7a27
.exe windows x86

0d98a2c637aca52a9507d2cb6ff0dafb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
CreateFileW
VirtualAlloc
GetStartupInfoA
lstrcatA
CloseHandle
GetProcAddress
GetModuleHandleA
OpenEventA
Sleep
GetLastError
FreeLibrary
CompareStringA
GetVersionExA
CreateProcessA
GetSystemDirectoryA
OpenProcess
GetCurrentProcessId
CreateEventA
GetTickCount
SetEvent
SetConsoleCtrlHandler
InterlockedDecrement
MultiByteToWideChar
WideCharToMultiByte
lstrcpyA
GetComputerNameA
lstrlenA
SetCurrentDirectoryA
AddAtomA
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
lstrcpynA
LoadLibraryExA
InterlockedIncrement
GetModuleFileNameA

user32

LoadIconW
LoadCursorA
LoadIconA
LoadCursorW
SetForegroundWindow
GetForegroundWindow
CreateWindowExA
EnableMenuItem
GetSubMenu
LoadMenuA
GetCursorPos
SetFocus
RegisterClassA
SetTimer
SystemParametersInfoA
DefWindowProcA
GetDesktopWindow
TrackPopupMenuEx
RemoveMenu
DestroyMenu
DestroyWindow
DestroyIcon
KillTimer
MsgWaitForMultipleObjects
TranslateMessage
DispatchMessageA
PostQuitMessage
PeekMessageA
LoadStringA
CharNextA
wsprintfA

gdi32

GetStockObject

msvcrt

exit
_acmdln
_cexit
_controlfp
_adjust_fdiv
_c_exit
_except_handler3
__set_app_type
__p__fmode
__p__commode
__setusermatherr
_initterm
__getmainargs
__initenv
_XcptFilter
_exit

advapi32

RegOpenKeyA
RegOpenKeyExA
RegCreateKeyA
RegisterEventSourceA
RegSetValueExA
RegCloseKey
RegCreateKeyExA
DeregisterEventSource
ReportEventA
RegDeleteValueA
RegFlushKey
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
DeleteService
OpenSCManagerA
RegQueryValueExA
SetServiceStatus
CloseServiceHandle
ChangeServiceConfigA
QueryServiceStatus
ControlService
OpenServiceA
CreateServiceA

shell32

Shell_NotifyIconA

ole32

CoInitialize
CoGetClassObject
CoUninitialize

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data19
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data5
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text13
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text12
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text5
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 860B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d98a2c637aca52a9507d2cb6ff0dafb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

advapi32

shell32

ole32

Sections

.text Size: 10KB - Virtual size: 9KB

.data Size: 3KB - Virtual size: 3KB

.data19 Size: 512B - Virtual size: 500B

.data5 Size: 114KB - Virtual size: 113KB

.text13 Size: 512B - Virtual size: 16B

.text12 Size: 512B - Virtual size: 16B

.text5 Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 912B

.reloc Size: 1024B - Virtual size: 860B

.text
Size: 10KB - Virtual size: 9KB

.data
Size: 3KB - Virtual size: 3KB

.data19
Size: 512B - Virtual size: 500B

.data5
Size: 114KB - Virtual size: 113KB

.text13
Size: 512B - Virtual size: 16B

.text12
Size: 512B - Virtual size: 16B

.text5
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 912B

.reloc
Size: 1024B - Virtual size: 860B