8a77360112151809a644f7eba46618c6ff3e06dfb497723163d13d8887626227

Sharing

Copy URL Twitter E-mail

General

Target

8a77360112151809a644f7eba46618c6ff3e06dfb497723163d13d8887626227
Size

254KB
MD5

fbe920cea08adb3be9fccf4f5a4a75bc
SHA1

b66fbabda686a5672889b14e4ddeda1e26bfe544
SHA256

8a77360112151809a644f7eba46618c6ff3e06dfb497723163d13d8887626227
SHA512

672c70086891d3fccf9b6497902bdc4b23803f470157422ed23a4b695b56b0cec2a588cc58c065549fde427fb7e045bf6cb0351ff9f8fb9cab8778cc7409a98e
SSDEEP

6144:z+viPZMRDXrvWH6R87L3uM5P/Ss893QP1cRgkOmty1S9fq4mlRg:xSVrvoms5PKs89A1cRP3tykc4WRg

Score

N/A

Malware Config

Signatures

Files

8a77360112151809a644f7eba46618c6ff3e06dfb497723163d13d8887626227
.exe windows x86

578b200b129b1475c3512c6e1d0909ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UnregisterClassA
CharLowerBuffA

kernel32

GetACP
HeapFree
HeapReAlloc
LeaveCriticalSection
HeapDestroy
RaiseException
EnterCriticalSection
IsDebuggerPresent
GetThreadLocale
DeleteCriticalSection
LockResource
GetSystemTimeAsFileTime
HeapSize
FindResourceExA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
lstrlenA
lstrlenW
GetCurrentThreadId
WideCharToMultiByte
GetProcessHeap
HeapAlloc
SizeofResource
FindResourceA
CreateDirectoryA
LoadResource
GetStartupInfoA
VirtualAllocEx

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

userenv

GetProfileType
FreeGPOListW
DllRegisterServer
ProcessGroupPolicyCompletedEx
GetDefaultUserProfileDirectoryA
RsopAccessCheckByType
GetAllUsersProfileDirectoryA

input

CPlApplet

Sections

.pIhJ
Size: 512B - Virtual size: 23KB

IMAGE_SCN_MEM_READ

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.GzxuJV
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Ifmm
Size: 1024B - Virtual size: 791B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.QJLW
Size: 512B - Virtual size: 405B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rAnMVI
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.GnJYZ
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 207KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.FMHVF
Size: 512B - Virtual size: 328B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.uEAFRXO
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xsIrL
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mzNg
Size: 1024B - Virtual size: 962B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.VtCeuzV
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

578b200b129b1475c3512c6e1d0909ed

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

advapi32

userenv

input

Sections

.pIhJ Size: 512B - Virtual size: 23KB

.text Size: 19KB - Virtual size: 19KB

.GzxuJV Size: 1KB - Virtual size: 1KB

.Ifmm Size: 1024B - Virtual size: 791B

.QJLW Size: 512B - Virtual size: 405B

.rAnMVI Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 64KB

.GnJYZ Size: 2KB - Virtual size: 1KB

.rdata Size: 207KB - Virtual size: 206KB

.FMHVF Size: 512B - Virtual size: 328B

.uEAFRXO Size: 2KB - Virtual size: 2KB

.xsIrL Size: 1KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 2KB

.mzNg Size: 1024B - Virtual size: 962B

.VtCeuzV Size: 2KB - Virtual size: 1KB

.pIhJ
Size: 512B - Virtual size: 23KB

.text
Size: 19KB - Virtual size: 19KB

.GzxuJV
Size: 1KB - Virtual size: 1KB

.Ifmm
Size: 1024B - Virtual size: 791B

.QJLW
Size: 512B - Virtual size: 405B

.rAnMVI
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 64KB

.GnJYZ
Size: 2KB - Virtual size: 1KB

.rdata
Size: 207KB - Virtual size: 206KB

.FMHVF
Size: 512B - Virtual size: 328B

.uEAFRXO
Size: 2KB - Virtual size: 2KB

.xsIrL
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 2KB

.mzNg
Size: 1024B - Virtual size: 962B

.VtCeuzV
Size: 2KB - Virtual size: 1KB