9f79f50e2644f7c945b2d3e85d8973057bf76315b73b2bc7ac628c36cf84640a

Sharing

Copy URL Twitter E-mail

General

Target

9f79f50e2644f7c945b2d3e85d8973057bf76315b73b2bc7ac628c36cf84640a
Size

165KB
MD5

39caf0f81faa28f191e0ead44d1c59c5
SHA1

86062b44d66d13e3891dbb60dcca211ea024ab01
SHA256

9f79f50e2644f7c945b2d3e85d8973057bf76315b73b2bc7ac628c36cf84640a
SHA512

edab029831667f29b46220be1bfc3c90fdf2d63eca7641c08bf3e346169bacce3af7b03969eaf6bcc94498a1662ee9c32adc99389905fa56ff1c63fdf259a5a7
SSDEEP

3072:kz/30poqg22OOdez0CdBTHpEOayyz5jWYychlBRpEd85lKtGLJxTsO/zaSxOebq:g/q2FEzFBTJEGodlfpU85lKtYl/zJ6

Score

N/A

Malware Config

Signatures

Files

9f79f50e2644f7c945b2d3e85d8973057bf76315b73b2bc7ac628c36cf84640a
.exe windows x86

7ce4d40a627497a206a0475630388ff3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupOpenLog
SetupLogErrorW
SetupDiSetClassInstallParamsW
SetupDiOpenDevRegKey
SetupDiInstallDevice
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassInstallParamsW
SetupDiCreateDevRegKeyW
SetupCloseLog
CM_Create_Range_List
CMP_UnregisterNotification

kernel32

GetCurrentThreadId
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
GetCurrentProcess
GetWindowsDirectoryW
LocalAlloc
MultiByteToWideChar
OutputDebugStringW
QueryPerformanceCounter
SetLastError
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualProtect
lstrcmpiW
lstrcpynW
GetComputerNameW
ExitProcess
DisableThreadLibraryCalls
DeviceIoControl
CreateFileW
CompareStringW
CloseHandle
GetTickCount
lstrlenW

advapi32

OpenServiceW
ChangeServiceConfigW
CloseServiceHandle
StartServiceW
RegSetValueExW
RegSetKeySecurity
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegCloseKey
OpenSCManagerW
CreateServiceW
ConvertStringSecurityDescriptorToSecurityDescriptorW
ControlService
QueryServiceConfigW

gdi32

GetAspectRatioFilterEx
CloseEnhMetaFile

msvcrt

wcscmp
_vsnwprintf
_except_handler3

user32

DialogBoxParamW
EnableWindow
EndDialog
GetDlgItem
GetParent
GetWindowLongW
GetWindowTextW
IsWindowEnabled
LoadStringW
SendMessageW
SetWindowLongW
SetWindowTextW
ShowWindow

shell32

ShellExecuteW
SHExtractIconsW

Exports

Exports

Delete
FInitializeRichEdit
HrIsStreamUnicode
IsPlatformWinNT

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ce4d40a627497a206a0475630388ff3

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

kernel32

advapi32

gdi32

msvcrt

user32

shell32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 88KB - Virtual size: 88KB

.data Size: 27KB - Virtual size: 27KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 88KB - Virtual size: 88KB

.data
Size: 27KB - Virtual size: 27KB

.rsrc
Size: 6KB - Virtual size: 5KB