fb7326a7175bd6ba04e16547202a93a482916b790c14e25dc57c52d0e8c770b1

Sharing

Copy URL

Twitter E-mail

General

Target

fb7326a7175bd6ba04e16547202a93a482916b790c14e25dc57c52d0e8c770b1
Size

124KB
MD5

4a0128d59caef05d956a7ff60de917b0
SHA1

fa7c89dea03bfe5ae098e25444875068e77e8019
SHA256

fb7326a7175bd6ba04e16547202a93a482916b790c14e25dc57c52d0e8c770b1
SHA512

d4dfeb59d4b98e4a410d9bfad36bb30102bcec57eb1b24362baf7a3b72af0632ce48e1f11f2d256963bb7d5c9239340c4849de39cf0da53c5e2353219caa85ac
SSDEEP

3072:A4OFjkz/ikJW/6R3MVLgOZd9FNnltcIU+A/:A4gjkzRJZELVJnlZPA

Score

N/A

Malware Config

Signatures

Files

fb7326a7175bd6ba04e16547202a93a482916b790c14e25dc57c52d0e8c770b1
.exe windows x86

f681ba4b563cc4d29ebbda4287461c3b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResetEvent
CreateProcessA
WaitForMultipleObjects
OutputDebugStringA
LocalFree
CreateMutexA
SetLastError
GetModuleHandleA
SetEnvironmentVariableA
CompareStringW
CreateFileMappingA
OpenEventA
OpenFileMappingA
CloseHandle
MapViewOfFile
SetEvent
UnmapViewOfFile
GetTempPathA
GetPrivateProfileIntA
GetCommandLineA
LoadLibraryA
GetCurrentProcessId
GetModuleFileNameA
CreateEventA
lstrlenA
Sleep
WaitForSingleObject
ReleaseMutex
FindFirstFileA
FindNextFileA
FindClose
GetLastError
AllocConsole
LoadLibraryExA
GetProcAddress
GetVersionExA
GetLocaleInfoA
GetACP
FormatMessageA
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
ExitThread
TlsSetValue
TlsGetValue
ResumeThread
CreateThread
GetSystemTimeAsFileTime
RtlUnwind
RaiseException
HeapFree
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
GetStartupInfoA
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
GetOEMCP
GetCPInfo
TlsFree
GetCurrentThreadId
TlsAlloc
UnhandledExceptionFilter
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
GetTimeZoneInformation
HeapSize
WriteFile
ReadFile
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetFilePointer
CreateFileA
InitializeCriticalSection
FlushFileBuffers
GetStringTypeA
GetStringTypeW
QueryPerformanceCounter
GetTickCount
VirtualProtect
GetSystemInfo
VirtualQuery
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEndOfFile
CompareStringA
DeleteFileA

user32

CharToOemA

advapi32

RegisterEventSourceA
ReportEventA
DeregisterEventSource
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
SetServiceStatus
OpenServiceA
ControlService
QueryServiceStatus
DeleteService
OpenSCManagerA
CreateServiceA
CloseServiceHandle
LogonUserA
ImpersonateLoggedOnUser
RevertToSelf
InitializeSecurityDescriptor
GetSidLengthRequired
InitializeAcl
InitializeSid
GetSidSubAuthority
AddAccessAllowedAce
SetSecurityDescriptorDacl
IsValidSecurityDescriptor
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f681ba4b563cc4d29ebbda4287461c3b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 28KB - Virtual size: 24KB

.data Size: 4KB - Virtual size: 13KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 28KB - Virtual size: 24KB

.data
Size: 4KB - Virtual size: 13KB

.rsrc
Size: 4KB - Virtual size: 3KB