8d59e04acb077c945c7291a7e7dec4d5c7bb4969bafe525bec2a44f5538578d8

General

Target

8d59e04acb077c945c7291a7e7dec4d5c7bb4969bafe525bec2a44f5538578d8
Size

278KB
MD5

422d0706d7935feb29afc2faaf1db993
SHA1

b4b0cb0b5a0d0f3b343d123042ba6b091d3b45f6
SHA256

8d59e04acb077c945c7291a7e7dec4d5c7bb4969bafe525bec2a44f5538578d8
SHA512

c7ac9c8314ef657922c5ebf50bdc4f2c95eabce581ea4b2c6df575ee7e35564cf59b34f463a2c327db707a40f3796f782d1d0282696ccba4bd99fd572a04d06e
SSDEEP

6144:1ttBKFQN260lrvt6+wQZLbDaDuAzXVcUCs5seRaWoqBJ+duxkF:1bbZ0lr/bNDabPR5Kxgo

Score

N/A

Malware Config

Signatures

Files

8d59e04acb077c945c7291a7e7dec4d5c7bb4969bafe525bec2a44f5538578d8
.exe windows x86

889af69189d5f90cc5157509de8dcce5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

LZCopy
LZClose
LZOpenFileA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegEnumKeyExA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegCloseKey

kernel32

CreateFileW
AddAtomW
MapViewOfFile
UnmapViewOfFile
GetTempPathW
CreateProcessW
CopyFileW
MoveFileExW
GetSystemTime
GetModuleHandleW
FileTimeToLocalFileTime
ResetEvent
SetEvent
CreateThread
GetCurrentThreadId
LocalAlloc
LocalFree
GetFileAttributesW
CreateEventA
SetFileAttributesW
EnumResourceNamesA
CreateDirectoryW
WaitForSingleObject
WriteFileGather
GetSystemDirectoryW
GetEnvironmentVariableW
CreateFileMappingA
GetExitCodeProcess
LoadLibraryExW
GetCommandLineA
CreateWaitableTimerA
WriteConsoleW
GetVersionExW
FileTimeToSystemTime
DeleteFileW
CloseHandle
CreateFileA

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

Sections

.text
Size: 138KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

889af69189d5f90cc5157509de8dcce5

Headers

File Characteristics

Imports

lz32

advapi32

kernel32

setupapi

Sections

.text Size: 138KB - Virtual size: 270KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 137KB - Virtual size: 136KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 138KB - Virtual size: 270KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 137KB - Virtual size: 136KB

.rsrc
Size: 512B - Virtual size: 4KB