8dc9ff7e22d6919c24086a1dbbf278772a70e60be34cf1b30bd0cb3f386f3144

General

Target

8dc9ff7e22d6919c24086a1dbbf278772a70e60be34cf1b30bd0cb3f386f3144
Size

167KB
MD5

61c9388477b5bd43f2f493b25c1cf9e3
SHA1

d3ba8c6da3dc27434bd8f965a7b80ece8cf87449
SHA256

8dc9ff7e22d6919c24086a1dbbf278772a70e60be34cf1b30bd0cb3f386f3144
SHA512

31ba19ff11607e72a3aaf4e880e315da74175dd2e28dca87bd2c80b8a81f173bcfce0491a06e3de872fb26c1e9c80d9b251401d81208a8a5eb82e4edfb9adc60
SSDEEP

3072:HHB9L4T9LTcDF31I2UmkQITipYypHAS1QpOUiGJ276hpu:HTW9vcDFFRUYxHzQUU/u

Score

N/A

Malware Config

Signatures

Files

8dc9ff7e22d6919c24086a1dbbf278772a70e60be34cf1b30bd0cb3f386f3144
.exe windows x86

05b17c91f7b8719e826d812730c65714

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Child
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

advapi32

RegQueryValueExA
RegEnumKeyA
RegEnumKeyExA
RegDeleteKeyA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueA
RegCloseKey

kernel32

GetVolumeInformationA
AddAtomW
InterlockedDecrement
Sleep
GetModuleFileNameA
ReleaseMutex
MultiByteToWideChar
DeviceIoControl
GetFileSize
LocalFree
WideCharToMultiByte
GetTempFileNameA
GetSystemTime
LocalAlloc
DisableThreadLibraryCalls
CreateMutexA
GetFileAttributesA
CopyFileA
GlobalFree
GetLastError
DeleteCriticalSection
lstrlenA
InterlockedIncrement
GlobalUnlock
DeleteFileA
QueryPerformanceCounter
GetCurrentThreadId
CreateFileA
EnumResourceNamesA
GetVersionExA
GetSystemTimeAsFileTime
SetFileAttributesA
InitializeCriticalSection
CloseHandle
VirtualAlloc
GetCurrentProcessId
ReadFile
FindResourceA
WaitForSingleObject
GetModuleFileNameW
VirtualFree
CreateFileW
GetTempPathA
GlobalLock
GetTickCount
CreateDirectoryA
SetFilePointer
FreeLibrary

lz32

LZCopy
LZClose
LZOpenFileA

Sections

.text
Size: 87KB - Virtual size: 482KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

05b17c91f7b8719e826d812730c65714

Headers

File Characteristics

Imports

setupapi

advapi32

kernel32

lz32

Sections

.text Size: 87KB - Virtual size: 482KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 77KB - Virtual size: 76KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 87KB - Virtual size: 482KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 77KB - Virtual size: 76KB

.rsrc
Size: 512B - Virtual size: 4KB