2642a8357cc7b516a5c88e20553516dd8629c19537b297540448bb2b2d5a14d2

Sharing

Copy URL Twitter E-mail

General

Target

2642a8357cc7b516a5c88e20553516dd8629c19537b297540448bb2b2d5a14d2
Size

464KB
MD5

4707d5e95706fb660856a3113f086870
SHA1

ff9805f7d36129f985a8845675ce95b5da2275af
SHA256

2642a8357cc7b516a5c88e20553516dd8629c19537b297540448bb2b2d5a14d2
SHA512

e57432ba19db39eb03b3862d34020862c7614ec6c4ca2c3c4f441aa5e9bfe3689df3583846f2a7e646eb6ac7ba0e10205f6459ce1c28e9d8e8f6d106cf99e2a1
SSDEEP

6144:DLUDyddJr7Fpjko2C1gGf94sS4K5XR7dJ8EaVRcM/UpZTaHXbW+2aaayaAvHzwUv:/tdlUo2EgGfUhMeDzv/+gQa

Score

N/A

Malware Config

Signatures

Files

2642a8357cc7b516a5c88e20553516dd8629c19537b297540448bb2b2d5a14d2
.exe windows x86

ac4f3de753959bf286b4ca76ed5286ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
HeapAlloc
LeaveCriticalSection
GetSystemInfo
LockResource
GetLastError
LocalFree
WriteFile
GetCurrentProcessId
QueryPerformanceCounter
FormatMessageW
FindResourceExW
HeapFree
Sleep
MultiByteToWideChar
FindResourceW
CreateFileW
GetTempFileNameA
CreateProcessW
GetWindowsDirectoryW
WaitForSingleObject
CreateToolhelp32Snapshot
ReadFile
GetSystemDirectoryA
GetFileTime
Process32FirstW
GetFileSize
GetModuleFileNameA
GetVersionExA
GetTempPathA
Process32NextW
SetErrorMode
CreateProcessA
SetEvent
GetExitCodeThread
CreateThread
CreateEventW
TerminateThread
GetModuleFileNameW
WaitForMultipleObjects
SetProcessAffinityMask
CloseHandle
GetProcessHeap
HeapReAlloc
GetPriorityClass
GetCurrentProcess
DeleteCriticalSection
LoadResource
InitializeCriticalSection
SizeofResource
EnterCriticalSection
lstrlenA
lstrlenW
GetTickCount
SetFileTime
QueryPerformanceFrequency
GetVolumeInformationA
WideCharToMultiByte
SetFilePointer
SetEndOfFile
SetEnvironmentVariableW
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetConsoleMode
GetConsoleCP
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CreateFileA
SetStdHandle
GetExitCodeProcess
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LoadLibraryA
HeapDestroy
HeapSize
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
RaiseException
InterlockedIncrement
InterlockedDecrement
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualProtect
VirtualAlloc
GetProcAddress
GetModuleHandleA
VirtualQuery
GetSystemTimeAsFileTime
DeleteFileW
GetLocalTime
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
GetCPInfo
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetFileAttributesW
HeapCreate
VirtualFree
GetStdHandle
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetFileAttributesA
SetHandleCount
GetFileType
FlushFileBuffers

advapi32

StartServiceW
QueryServiceStatusEx
OpenSCManagerW
CloseServiceHandle
CreateServiceW
ChangeServiceConfig2W
SetServiceStatus
RegisterServiceCtrlHandlerW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW
StartServiceCtrlDispatcherW

ole32

CLSIDFromProgID
CoUninitialize
CoCreateInstance
CoInitialize
StringFromCLSID

ws2_32

WSACreateEvent
closesocket
WSAEventSelect
WSAGetLastError
WSARecv
WSAStartup
WSAResetEvent
WSASend
WSAConnect
WSAEnumNetworkEvents
WSACloseEvent
WSASetEvent
getaddrinfo
WSAGetOverlappedResult
freeaddrinfo
WSASetLastError
gethostbyname
WSASocketW
WSACleanup

user32

UnregisterClassA

Sections

.text
Size: 372KB - Virtual size: 370KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac4f3de753959bf286b4ca76ed5286ba

Headers

File Characteristics

Imports

kernel32

advapi32

ole32

ws2_32

user32

Sections

.text Size: 372KB - Virtual size: 370KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 8KB - Virtual size: 15KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 372KB - Virtual size: 370KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 8KB - Virtual size: 15KB

.rsrc
Size: 4KB - Virtual size: 1KB