26d7155817f314f47f619bdca54b3577b5b79ca2d2c0d07f5319192e5f661704

Sharing

Copy URL Twitter E-mail

General

Target

26d7155817f314f47f619bdca54b3577b5b79ca2d2c0d07f5319192e5f661704
Size

112KB
MD5

7b36d5397b5d9ef69aa623cc5ef6d880
SHA1

8ea6ac290209c844e1bb17d61bd6a5b1980fed01
SHA256

26d7155817f314f47f619bdca54b3577b5b79ca2d2c0d07f5319192e5f661704
SHA512

2e5543720d8d46da0bb059b30f2c4687a00167f45fe5ca0b284338d47628f76da3599dd07838c740f172518c80a63614c3996f99648352b26a54b35b8bd15afe
SSDEEP

3072:Zm3HceiLzI1oMVZbvb4YBxFeP5HqmRRcerra:ciLUznH4K0RXH

Score

N/A

Malware Config

Signatures

Files

26d7155817f314f47f619bdca54b3577b5b79ca2d2c0d07f5319192e5f661704
.dll windows x86

2baf5da00eed29c172c4094dab689685

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
RegDeleteValueA
RegEnumValueA
UnlockServiceDatabase
RegDeleteKeyW

version

GetFileVersionInfoSizeW
VerQueryValueA

kernel32

RtlUnwind
GetStringTypeW
GetStringTypeA
VirtualAlloc
LoadLibraryA
IsValidLocale
GetModuleHandleA
GetProcAddress
GetHandleInformation
CreateFileA
GetSystemInfo
GetConsoleCP
InterlockedExchange
GetThreadLocale
HeapAlloc
LoadLibraryExW
LocalFree
HeapReAlloc
ReadFile
SetEnvironmentVariableA
HeapFree
CreateMutexW
GetLocaleInfoW
GetTimeFormatA
SetLastError
CreateFileMappingA
IsBadReadPtr
GetTickCount
CompareStringA
LockResource
CreateFileMappingW
GetCurrentThread
CopyFileA
CreateProcessW
LeaveCriticalSection
GetACP
FindResourceW
LocalAlloc
GetThreadTimes
lstrcpyW
GetConsoleMode
FileTimeToLocalFileTime
HeapCreate
GetLastError
InterlockedCompareExchange
GetFileSize
lstrlenW
SetErrorMode
ExitProcess
GetSystemTime
GetCommandLineA
GetVersion
HeapDestroy
VirtualFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
FatalAppExitA
IsBadWritePtr
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
CloseHandle
UnhandledExceptionFilter
GetCPInfo
GetOEMCP
FlushFileBuffers
SetStdHandle
SetEndOfFile
SetFilePointer
MultiByteToWideChar
LCMapStringA
LCMapStringW

Exports

Exports

fxicfce

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2baf5da00eed29c172c4094dab689685

Headers

File Characteristics

Imports

advapi32

version

kernel32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 42KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 52KB - Virtual size: 55KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 44KB - Virtual size: 42KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 52KB - Virtual size: 55KB

.reloc
Size: 8KB - Virtual size: 4KB