9489249418ad456c64e25e6ebd5429b97b39d8b268e0b6cc4810b893956ca2ce

Sharing

Copy URL Twitter E-mail

General

Target

9489249418ad456c64e25e6ebd5429b97b39d8b268e0b6cc4810b893956ca2ce
Size

161KB
MD5

a1c6af06eb44dc61369db56822ff8043
SHA1

b36e17204b4d0aeba511995060adfb97b7c3ae4c
SHA256

9489249418ad456c64e25e6ebd5429b97b39d8b268e0b6cc4810b893956ca2ce
SHA512

a615be3ffea69d054d4d8bd986f89228a51137708d61a0e3fb30fe1b46194ae0b1ba98590ca144248ce97d7f0b6d47e8b47b0efc18b87965098183cf8d3ba838
SSDEEP

1536:eLK1Ayz3011Ru4izTUiTN2UWaff8afhKVWMRu6Hw:eLGAyzk1DjiHUWN2UnfTf+WMu6H

Score

N/A

Malware Config

Signatures

Files

9489249418ad456c64e25e6ebd5429b97b39d8b268e0b6cc4810b893956ca2ce
.exe windows x86

752de1c402e6507b34d263d2d944cca3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
AllocateAndInitializeSid
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
AdjustTokenPrivileges
RegDeleteKeyW
AllocateAndInitializeSid
FreeSid
InitializeAcl
RegOpenKeyW
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
AllocateAndInitializeSid
RegQueryInfoKeyW
InitializeAcl
RegDeleteValueW
RegSetValueExA
AllocateAndInitializeSid
RegCreateKeyExA
RegEnumValueW
RegCreateKeyExA
FreeSid
RegQueryValueExA
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegQueryValueExW
CloseServiceHandle
AdjustTokenPrivileges
CloseServiceHandle
RegCreateKeyExW
RegQueryValueExA
RegCloseKey

user32

LoadIconW
LoadImageW
MessageBoxA
PostMessageW
IsWindow
PostQuitMessage
LoadImageW
CopyRect
ShowWindow
SetDlgItemTextW
TranslateMessage
CreateDialogParamW

kernel32

SetFilePointer
ExitProcess
InterlockedDecrement
GetProcessHeap
QueryPerformanceCounter
GetModuleHandleW
TerminateProcess
FreeLibrary
GetStartupInfoW
HeapFree
HeapAlloc
lstrcpyW
GetCurrentProcess
GetModuleHandleW
GetLastError

Sections

Size: 148KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�vmp0
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

�reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

�reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

752de1c402e6507b34d263d2d944cca3

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

Size: 148KB - Virtual size: 160KB

Size: 512B - Virtual size: 4KB

Size: 2KB - Virtual size: 4KB

�vmp0 Size: 6KB - Virtual size: 5KB

�reloc Size: 1024B - Virtual size: 4KB

�reloc Size: 3KB - Virtual size: 4KB

�vmp0
Size: 6KB - Virtual size: 5KB

�reloc
Size: 1024B - Virtual size: 4KB

�reloc
Size: 3KB - Virtual size: 4KB