b6011076ee2e6c9cdc7c95f613e00db5fb3dcb44a6101c124895d7781b597405

Sharing

Copy URL

Twitter E-mail

General

Target

b6011076ee2e6c9cdc7c95f613e00db5fb3dcb44a6101c124895d7781b597405
Size

150KB
MD5

309f51cb6bd542f7ea3a5ce763557a8b
SHA1

667de9435afea3850132ce4fd670bed99b3b6ff0
SHA256

b6011076ee2e6c9cdc7c95f613e00db5fb3dcb44a6101c124895d7781b597405
SHA512

d735bcb89c082a80c1d84f9439e8d684116b24fea1ed3ad33412cf16c3cfa4a0dadc880069614f4cee209e4bd936a8a897fdd127e0f852ed81ce1f21a54d2664
SSDEEP

3072:ms0o1kNu4JX+1EDDo/fjxxIFfuLaH/43f0waKqV4b7j:msvGNu4BGksXjxeFGOfgf0waKqV4b7

Score

N/A

Malware Config

Signatures

Files

b6011076ee2e6c9cdc7c95f613e00db5fb3dcb44a6101c124895d7781b597405
.exe windows x86

7cd0e787ee3452e89b49ac373742348e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
SetUnhandledExceptionFilter
VirtualFree
lstrcmpiW
VirtualAlloc
TerminateProcess
SetLastError
MultiByteToWideChar
LocalAlloc
CompareStringW
DisableThreadLibraryCalls
ExitProcess
GetComputerNameW
GetCurrentProcess
GetCurrentThreadId
GetLastError
CloseHandle
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
GetWindowsDirectoryW
GetTickCount

shell32

ShellExecuteW
SHSetUnreadMailCountW
SHOpenFolderAndSelectItems

setupapi

SetupOpenLog
SetupLogErrorW
SetupDiSetClassInstallParamsW
SetupDiInstallDevice
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassInstallParamsW
SetupDiCreateDevRegKeyW
SetupCloseLog
CM_Create_DevNodeA
CMP_Report_LogOn
SetupDiOpenDevRegKey

advapi32

RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegCloseKey
OpenServiceW
OpenSCManagerW
InitializeSid
ConvertStringSecurityDescriptorToSecurityDescriptorW
ControlService
CloseServiceHandle
ChangeServiceConfigW
AddAce
RegSetKeySecurity

gdi32

CloseEnhMetaFile

msvcrt

_except_handler3
wcscmp

user32

ShowWindow
SetWindowTextW
SetWindowLongW
DialogBoxParamW
EnableWindow
EndDialog
GetParent
GetThreadDesktop
GetWindowLongW
GetWindowTextW
OffsetRect
SendMessageW

Sections

.text
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7cd0e787ee3452e89b49ac373742348e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shell32

setupapi

advapi32

gdi32

msvcrt

user32

Sections

.text Size: 38KB - Virtual size: 37KB

.rdata Size: 75KB - Virtual size: 74KB

.data Size: 34KB - Virtual size: 34KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 38KB - Virtual size: 37KB

.rdata
Size: 75KB - Virtual size: 74KB

.data
Size: 34KB - Virtual size: 34KB

.rsrc
Size: 2KB - Virtual size: 2KB