86df4835b68a0ccf074656f66d46725bb05cfe11ce02cddc73eee8fc005d95cb

General

Target

86df4835b68a0ccf074656f66d46725bb05cfe11ce02cddc73eee8fc005d95cb
Size

167KB
MD5

a53bff7f875a6bddc8c0da4c56861df3
SHA1

a69c3df3fefc187bbce02c1a7c08861c962ab15a
SHA256

86df4835b68a0ccf074656f66d46725bb05cfe11ce02cddc73eee8fc005d95cb
SHA512

9812601e9cc668dfe6db502689cf73c30ef5c35cb38f59ccbed26bc2aea5d343bd05623db23cf2d47951b9598253b1ba35f2ffdb1bec7967ad2e594935fab287
SSDEEP

3072:J0by5pAO1+320U3cC9Gs4+BkRzDb+KcWNNch9N9RZcH79tK:JmyjAOs32kQmx2hl4H7G

Score

N/A

Malware Config

Signatures

Files

86df4835b68a0ccf074656f66d46725bb05cfe11ce02cddc73eee8fc005d95cb
.exe windows x86

2211e77a5ca04e495a91032da656200b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

LZClose
LZCopy
LZOpenFileA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegEnumKeyA
RegOpenKeyA
RegQueryValueA
RegCloseKey

setupapi

CM_Get_Child
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

kernel32

QueryPerformanceCounter
ReleaseMutex
GetModuleFileNameA
DeviceIoControl
CreateMutexA
GetTickCount
WideCharToMultiByte
GetTempFileNameA
AddAtomW
CreateFileA
GetCurrentProcessId
GetSystemTimeAsFileTime
GetFileSize
GetTempPathA
CreateFileW
lstrlenA
GlobalUnlock
GlobalLock
DeleteFileA
ReadFile
SetFileAttributesA
Sleep
CloseHandle
InitializeCriticalSection
LocalFree
GetLastError
GetSystemTime
EnumResourceNamesA
InterlockedDecrement
CreateDirectoryA
InterlockedIncrement
FindResourceA
GetVolumeInformationA
GetVersionExA
VirtualFree
LocalAlloc
WaitForSingleObject
DeleteCriticalSection
GetCurrentThreadId
GetModuleFileNameW
DisableThreadLibraryCalls
CopyFileA
GetFileAttributesA
MultiByteToWideChar
VirtualAlloc
SetFilePointer
GlobalFree
FreeLibrary

Sections

.text
Size: 86KB - Virtual size: 481KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2211e77a5ca04e495a91032da656200b

Headers

File Characteristics

Imports

lz32

advapi32

setupapi

kernel32

Sections

.text Size: 86KB - Virtual size: 481KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 78KB - Virtual size: 77KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 86KB - Virtual size: 481KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 78KB - Virtual size: 77KB

.rsrc
Size: 512B - Virtual size: 4KB