c7ba2ecb24d14a00512c0db3489f477e6dcc6cac3a2d228b2a72b8dd53b5a7c9

Sharing

Copy URL

Twitter E-mail

General

Target

c7ba2ecb24d14a00512c0db3489f477e6dcc6cac3a2d228b2a72b8dd53b5a7c9
Size

26KB
MD5

8548113cf0a69916eab20c24d7b3274f
SHA1

e4c1c5d8fe1e009f06ec21f29b78a5a373ef442b
SHA256

c7ba2ecb24d14a00512c0db3489f477e6dcc6cac3a2d228b2a72b8dd53b5a7c9
SHA512

00844871f041991c9330205fb706bd4ed7fc2cc6b28f96c02a2aa88cd4822b6947e7521207622b65c3ccfb8689856ad0494770bb39c721e25635c4dda3c860d7
SSDEEP

384:kjDs931ZuGyAubuaD22iPOS55NW97UBSfLDfqtUk77EKY888r6woPR:gQlGGHSZiT5PRwvitUk77EKfGR

Score

N/A

Malware Config

Signatures

Files

c7ba2ecb24d14a00512c0db3489f477e6dcc6cac3a2d228b2a72b8dd53b5a7c9
.exe windows x86

20932ebca735b4f2647892298de533b9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA

setupapi

SetupDiEnumDeviceInfo
SetupGetSourceFileLocationA
SetupDiSetClassInstallParamsA
SetupDiGetDeviceInstanceIdW
SetupOpenMasterInf
SetupGetSourceInfoA
SetupPromptForDiskA
SetupDiCallClassInstaller
SetupDiCreateDeviceInfoList
SetupDiOpenDevRegKey
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupCloseInfFile

advapi32

OpenServiceA
StartServiceA
ChangeServiceConfigA
RegEnumKeyA
OpenSCManagerA
RegOpenKeyW
RegQueryValueExW
RegOpenKeyA
RegQueryValueExA
RegCloseKey
CloseServiceHandle
QueryServiceStatus
RegSetValueExA
RegOpenKeyExA

tapi32

lineClose
lineNegotiateAPIVersion
lineInitializeExW
lineGetDevCapsW
lineOpen
lineShutdown
lineGetID

ntdll

NtCreateDebugObject
NtAllocateVirtualMemory
RtlUlongByteSwap

kernel32

GetLocaleInfoA
LoadLibraryA
lstrcpyA
LCMapStringA
GetModuleHandleA
GetLastError
GetCPInfo
ExitProcess
GetProcessHeap
lstrcmpiW
WideCharToMultiByte
VirtualAlloc
GetShortPathNameW
GlobalFree
CloseHandle
DeleteFileW
VirtualQuery
CreateDirectoryW
lstrcmpiA
GetTempFileNameW
HeapFree
GetVersionExA
MultiByteToWideChar
FreeLibrary
GetSystemInfo
lstrlenW
LoadLibraryW
GetTempPathW
VirtualFree
GetTickCount
HeapAlloc
FormatMessageA
lstrlenA
CreateFileA
VirtualProtect
HeapReAlloc
GetProcAddress
LCMapStringW
Sleep
GetStringTypeW
lstrcmpA
GlobalAlloc

ole32

CoInitializeEx
CoUninitialize
CoCreateInstance

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20932ebca735b4f2647892298de533b9

Headers

DLL Characteristics

File Characteristics

Imports

user32

setupapi

advapi32

tapi32

ntdll

kernel32

ole32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 5KB - Virtual size: 40KB

.rdata Size: 10KB - Virtual size: 9KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 5KB - Virtual size: 40KB

.rdata
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 5KB - Virtual size: 5KB