ce8932b5b3703eb43b0d1e573aad55a22667b7e30d76e46dcd0b6e1b5123549a

Sharing

Copy URL Twitter E-mail

General

Target

ce8932b5b3703eb43b0d1e573aad55a22667b7e30d76e46dcd0b6e1b5123549a
Size

843KB
MD5

f44e06c49a75f702a12e73868e82fb77
SHA1

d32c987f9a2445db21fa91a95a9459e6d516f034
SHA256

ce8932b5b3703eb43b0d1e573aad55a22667b7e30d76e46dcd0b6e1b5123549a
SHA512

935b3b190bfa05cdec596947eef00cc8cab5f8502e36a3bafe65ae46390f067162be783b9ed2cdf3d233f680cc9b1e3652d35acd48f8fb02fb058b3858fa4b0b
SSDEEP

24576:ryx18GSY2aukczLCAwtE7kBMXTZxNp5WSS/SZRH:mQGXRNcz4tE7QcbfESPR

Score

N/A

Malware Config

Signatures

Files

ce8932b5b3703eb43b0d1e573aad55a22667b7e30d76e46dcd0b6e1b5123549a
.exe windows x86

a475e921103d09e7401c6bf6bd022162

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

_strupr
_mbctolower
__getmainargs
_unlock
_wunlink
isalpha
atan2
modf
_ultow
_fullpath
time
fputwc
strcat
_wstrtime
wcstombs
_wfsopen
_read
_i64tow
__wgetmainargs
??0exception@@QAE@XZ
memcmp
atoi
strchr
_vsnwprintf
??0bad_cast@@QAE@ABV0@@Z
_except_handler3
_mbsrchr
_CIacos
fwrite
__set_app_type
_stat
ceil
_filelength

ole32

OleGetIconOfClass
CreateGenericComposite
OleInitialize
HWND_UserSize
CoInitialize
HMENU_UserUnmarshal
WriteFmtUserTypeStg
RegisterDragDrop
CoDisconnectObject
FreePropVariantArray
HPALETTE_UserSize
CoGetMalloc
CLIPFORMAT_UserMarshal
CoRegisterPSClsid

shlwapi

SHGetInverseCMAP
StrRChrW
StrPBrkW
UrlCanonicalizeW
SHRegOpenUSKeyA
StrChrIW
PathFileExistsA
PathIsUNCServerShareW
PathQuoteSpacesW
SHCreateStreamOnFileEx
SHDeleteKeyA
SHRegGetUSValueA
wnsprintfW
PathGetArgsW
PathUnquoteSpacesA
PathFindExtensionW
SHRegQueryInfoUSKeyW
StrStrW
PathAddExtensionW
StrRetToBufA
PathMakeSystemFolderW
PathMatchSpecW
SHOpenRegStream2W
PathIsSameRootW
StrChrNW
PathStripToRootA
PathIsUNCServerW
PathCompactPathExW
StrSpnA

oleaut32

VariantChangeTypeEx
SafeArrayPtrOfIndex
SysAllocStringLen
SafeArrayGetUBound
VariantChangeType
SysFreeString
SysReAllocStringLen
SysStringLen
SafeArrayGetLBound
SafeArrayCreate
VariantCopy
VariantCopyInd
VariantInit
GetActiveObject
SysAllocStringByteLen
VariantClear

crypt32

CertSetCRLContextProperty

kernel32

QueryPerformanceCounter
SetEnvironmentVariableW
WriteConsoleInputA
SetProcessAffinityMask
GetExitCodeThread
RtlZeroMemory
SearchPathW
SetThreadExecutionState
GetProcAddress
SetTermsrvAppInstallMode
FormatMessageW
GetSystemDefaultUILanguage
GetLastError
IsBadWritePtr
DeleteTimerQueueTimer
AssignProcessToJobObject
VirtualAlloc
CopyFileW
GetDiskFreeSpaceExA
lstrcpyA
FileTimeToLocalFileTime
EnumSystemLocalesW
GetModuleHandleA
GetCurrentDirectoryA
ConvertDefaultLocale
FormatMessageA
MoveFileExW
EnumDateFormatsW
FindResourceW
GetTimeFormatW
PostQueuedCompletionStatus
GetConsoleScreenBufferInfo
WideCharToMultiByte

advapi32

AddAccessAllowedAce
CryptDestroyKey
StartServiceW
CryptSetHashParam
SetKernelObjectSecurity
RegSetValueW
InitializeAcl
RegRestoreKeyA
RegQueryValueExA
EncryptFileW
RegDeleteValueA
MakeSelfRelativeSD
RegCreateKeyExW
QueryServiceStatus
BackupEventLogW
IsValidSecurityDescriptor
QueryServiceConfig2W
RegSaveKeyW

Sections

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 54KB - Virtual size: 332KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 691KB - Virtual size: 969KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 990B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a475e921103d09e7401c6bf6bd022162

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

ole32

shlwapi

oleaut32

crypt32

kernel32

advapi32

Sections

.data Size: 2KB - Virtual size: 1KB

.text Size: 54KB - Virtual size: 332KB

.idata Size: 691KB - Virtual size: 969KB

.rsrc Size: 93KB - Virtual size: 93KB

.reloc Size: 1024B - Virtual size: 990B

.data
Size: 2KB - Virtual size: 1KB

.text
Size: 54KB - Virtual size: 332KB

.idata
Size: 691KB - Virtual size: 969KB

.rsrc
Size: 93KB - Virtual size: 93KB

.reloc
Size: 1024B - Virtual size: 990B