d2acf220e814b8527e877e5f0c7131e130a4e78d995c3786eb4a4f76614bc4d5

Sharing

Copy URL Twitter E-mail

General

Target

d2acf220e814b8527e877e5f0c7131e130a4e78d995c3786eb4a4f76614bc4d5
Size

242KB
MD5

2b6d9eca4b6f36963ffbe85fb34721b5
SHA1

e3523148d7b5878491e9e5f9564dc8306624d4a2
SHA256

d2acf220e814b8527e877e5f0c7131e130a4e78d995c3786eb4a4f76614bc4d5
SHA512

6373affc342771b6f0978daa036da9a3cbac8d04d63ab8bbb23c3d2804f7560b440b0f704dcc7b005d650308d3879f97ffceaea965d717736f99e290685a78b4
SSDEEP

6144:SihGdONhsGhtzep9JB7/Nvbohn74ilV5RHjkO0:YONd+PNkhZ3RD

Score

N/A

Malware Config

Signatures

Files

d2acf220e814b8527e877e5f0c7131e130a4e78d995c3786eb4a4f76614bc4d5
.exe windows x86

57fbffee92560e9347c168a240546068

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

AdjustTokenGroups
NotifyBootConfigStatus
ReadEventLogW
RegQueryValueW
SetSecurityDescriptorControl
StartServiceA

kernel32

CloseHandle
CreateFileA
CreateMutexW
ExitProcess
FindFirstChangeNotificationW
GetACP
GetCPInfo
GetCommandLineA
GetCurrentThreadId
GetEnvironmentStrings
GetFileType
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetVersion
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapFree
LoadLibraryA
LocalSize
PostQueuedCompletionStatus
RaiseException
ReadConsoleOutputA
RtlUnwind
SetConsoleCtrlHandler
SetEnvironmentVariableA
SetFilePointer
SetHandleCount
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WideCharToMultiByte
WriteFile

user32

EnumChildWindows
EnumPropsW
EnumThreadWindows
IsDialogMessageA
LoadCursorW
MessageBoxA
OemToCharBuffA
wsprintfA

Sections

.text
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

57fbffee92560e9347c168a240546068

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.text Size: 33KB - Virtual size: 36KB

.data Size: 23KB - Virtual size: 28KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 178KB - Virtual size: 178KB

.reloc Size: 2KB - Virtual size: 4KB

.text
Size: 33KB - Virtual size: 36KB

.data
Size: 23KB - Virtual size: 28KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 178KB - Virtual size: 178KB

.reloc
Size: 2KB - Virtual size: 4KB