83f2b972893099b2aa2749d5ce41337852b954e5de273d0fa54d5baa492aff80

Sharing

Copy URL

Twitter E-mail

General

Target

83f2b972893099b2aa2749d5ce41337852b954e5de273d0fa54d5baa492aff80
Size

279KB
MD5

b6d28b4fd87e98611a271ed76ad9f792
SHA1

5f62d77e9ca72fb8a33cf139140f8c1bb85504b9
SHA256

83f2b972893099b2aa2749d5ce41337852b954e5de273d0fa54d5baa492aff80
SHA512

70ff7f317496a15245bb4540f4b1d7f4aefba70619a300d599e8b9726a98d8f9ef5c76ce74891d93135113fea5f0e8d9ceca5a64d72807ef5c23b788d5e25bb9
SSDEEP

6144:xPSx9i2fj0k7cSIjh/Jm2jdDTU0SSkKO8jO0Uzh6wh:JSHi237cSIja2JbO8j9

Score

N/A

Malware Config

Signatures

Files

83f2b972893099b2aa2749d5ce41337852b954e5de273d0fa54d5baa492aff80
.exe windows x86

d40f29d428d42ae5504ff763fd0a8d41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

DeleteFileA
FindNextFileA
SetEndOfFile
EnterCriticalSection
GetWindowsDirectoryA
LocalFree
RemoveDirectoryA
GetSystemTimeAsFileTime
WritePrivateProfileStringA
SetFileAttributesA
CloseHandle
HeapFree
HeapDestroy
EnumSystemLocalesA
GetShortPathNameA
GetACP
ReadFile
GetLogicalDriveStringsA
GetCommandLineA
FormatMessageA
CreateDirectoryA
FreeEnvironmentStringsA
GetStdHandle
RtlUnwind
FindFirstFileA
LeaveCriticalSection
GetUserDefaultLCID
GetCurrentThreadId
SetStdHandle
SetLastError
UnhandledExceptionFilter
SetEnvironmentVariableA
TlsFree
GetSystemDirectoryA
CreateFileA
IsBadCodePtr
CopyFileA
TlsGetValue
lstrcmpiA
CreateFileW
HeapReAlloc
HeapSize
SetFilePointer
FreeEnvironmentStringsW
HeapAlloc
VirtualProtect
CompareFileTime
GetTimeZoneInformation
SetUnhandledExceptionFilter
GetOEMCP
GetTempPathA
GetCurrentDirectoryA
SetConsoleCtrlHandler
LocalAlloc
OutputDebugStringA
GetFileSize
IsValidLocale
ExpandEnvironmentStringsA
MoveFileExA
DeleteFileW
GetTimeFormatA
RaiseException
TlsAlloc
VirtualFree
GetSystemInfo
CompareStringA
VirtualQuery
TlsSetValue
LCMapStringA
GetDateFormatA
IsValidCodePage
GetFileAttributesExA
DeleteCriticalSection
LCMapStringW
WritePrivateProfileSectionA
GetFileType
GetSystemTime
FindClose
WriteFile
GetPrivateProfileSectionA
LoadLibraryExA
CompareStringW
FatalAppExitA
GetThreadLocale
FileTimeToSystemTime
SetHandleCount
VirtualAlloc
GetModuleHandleA
WideCharToMultiByte
SystemTimeToFileTime
FlushFileBuffers
GetLocalTime
FreeLibrary
VirtualAllocEx

user32

GetSystemMetrics
LoadStringA
UnregisterClassA
CharUpperA

shlwapi

StrStrIA
PathAddBackslashA
PathAppendA

ole32

CoUninitialize
CoTaskMemFree
CoCreateInstance
CoInitialize
CoTaskMemAlloc

advapi32

OpenSCManagerA
RegCloseKey
CloseServiceHandle
QueryServiceStatus
RegSetValueExA
RegEnumKeyExA
RegEnumValueA
RegCreateKeyExA
RegFlushKey
ChangeServiceConfigA
SetSecurityDescriptorDacl
GetUserNameA
UnlockServiceDatabase
RegOpenKeyExA
StartServiceA
DeleteService
RegEnumKeyA
RegOpenKeyA
CreateServiceA
RegDeleteKeyA
RegQueryValueExA
RegQueryInfoKeyA
OpenServiceA
RegDeleteValueA
LockServiceDatabase
InitializeSecurityDescriptor
ControlService

rtm

RtmCloseEnumerationHandle
RtmReleaseNextHops
MgmGetProtocolOnInterface
RtmGetRouteAge
RtmGetLessSpecificDestination
RtmReleaseChangedDests
RtmReleaseEntities
RtmGetEnumDests
RtmGetChangedDests
RtmInvokeMethod
RtmIgnoreChangedDests
RtmUpdateAndUnlockRoute
MgmGroupEnumerationGetNext

cliconfg

CPlApplet

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 257KB - Virtual size: 419KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d40f29d428d42ae5504ff763fd0a8d41

Headers

File Characteristics

Imports

version

kernel32

user32

shlwapi

ole32

advapi32

rtm

cliconfg

Sections

.text Size: 15KB - Virtual size: 14KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 257KB - Virtual size: 419KB

.rsrc Size: 2KB - Virtual size: 6KB

.text
Size: 15KB - Virtual size: 14KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 257KB - Virtual size: 419KB

.rsrc
Size: 2KB - Virtual size: 6KB