4bd2d8b9567490e58f61b98b185f48c81ea10862e20ce8ffd3e16ed7d1c1b3b6

Sharing

Copy URL Twitter E-mail

General

Target

4bd2d8b9567490e58f61b98b185f48c81ea10862e20ce8ffd3e16ed7d1c1b3b6
Size

682KB
MD5

3361d7da0cb64ec30e11fc93496e0e00
SHA1

dc80cffd7975c1dcc9821c11adcca1cbaa72e503
SHA256

4bd2d8b9567490e58f61b98b185f48c81ea10862e20ce8ffd3e16ed7d1c1b3b6
SHA512

2d409d57f962bb3d906efa8ab1210e98daa0e0ee9a0b6a64b627e0fa1b3a6ff6e2567e33cd580ecb1309b9959e461faa505234a4f9028dcda17bb9fd57ae7479
SSDEEP

12288:DVZH1YObjrDUmw2lVF7xdWSSauKBfXN8U1m2wF0ELYBcdQmcte:DVZH1YOXrDUm5LFSauifdHgLkBcdQr

Score

N/A

Malware Config

Signatures

Files

4bd2d8b9567490e58f61b98b185f48c81ea10862e20ce8ffd3e16ed7d1c1b3b6
.exe windows x86

16481fcff70bc9f8ee2723bd90efc6db

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

netapi32

I_NetServerSetServiceBitsEx
NetServerDiskEnum
NetShareSetInfo
NetQueryDisplayInformation
NetSessionEnum
I_NetServerReqChallenge
NetUserSetInfo
NetServiceControl
NetLocalGroupGetInfo
NetWkstaGetInfo
NetShareDel
NetLocalGroupDelMembers
NetUserGetInfo
NetStatisticsGet
NetLocalGroupSetInfo
NetServerEnum
NetApiBufferAllocate

ole32

HGLOBAL_UserUnmarshal
CoReleaseServerProcess
OleTranslateAccelerator
CoQueryClientBlanket
OleCreateLinkFromData
CreateItemMoniker

advapi32

OpenEncryptedFileRawW
AreAllAccessesGranted
AddAccessAllowedObjectAce
UnregisterTraceGuids
GetKernelObjectSecurity
RegCreateKeyW
ImpersonateSelf
AddAuditAccessAce
AreAnyAccessesGranted
QueryServiceConfig2W
SetSecurityDescriptorSacl
RegOpenKeyW
LsaStorePrivateData
RegQueryValueExW
SystemFunction035
RegFlushKey

kernel32

CreateFileMappingW
GetFullPathNameA
ProcessIdToSessionId
VirtualAlloc
EnumTimeFormatsW
WideCharToMultiByte
VerifyVersionInfoW
ConnectNamedPipe
RaiseException
GetWindowsDirectoryW
ClearCommBreak
UnlockFileEx
lstrcmpiW
GetVersionExA
SetComputerNameExW
CreateMailslotA
SetConsoleCtrlHandler
GetSystemDefaultLCID
GetProfileIntA

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 363KB - Virtual size: 433KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 188KB - Virtual size: 405KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16481fcff70bc9f8ee2723bd90efc6db

Headers

File Characteristics

Imports

netapi32

ole32

advapi32

kernel32

Sections

.text Size: 8KB - Virtual size: 7KB

.bss Size: 363KB - Virtual size: 433KB

.idata Size: 188KB - Virtual size: 405KB

.rsrc Size: 121KB - Virtual size: 121KB

.reloc Size: 512B - Virtual size: 44B

.text
Size: 8KB - Virtual size: 7KB

.bss
Size: 363KB - Virtual size: 433KB

.idata
Size: 188KB - Virtual size: 405KB

.rsrc
Size: 121KB - Virtual size: 121KB

.reloc
Size: 512B - Virtual size: 44B