e0d29344e63e49639d4c14fe08c85a707c46c5655165083a463be895e40011fa

Sharing

Copy URL Twitter E-mail

General

Target

e0d29344e63e49639d4c14fe08c85a707c46c5655165083a463be895e40011fa
Size

179KB
MD5

4c72b028a518afde3dad71b989eb2dc0
SHA1

5f73aa4621db58f0edab2a5025e398b067f419b4
SHA256

e0d29344e63e49639d4c14fe08c85a707c46c5655165083a463be895e40011fa
SHA512

4215561c92985be3988e3539744525c3054f376ed3aaaae3248768d13e0b3cada7112289d8ec4a2d5f6b0f137721db7f39254e7c2575c992f6ca84ad734b2833
SSDEEP

3072:+HuhIBSdifLQOjZDFa4mXSDUQrM4rZ1YJzT2CrEXSkv062A8OXTV0nI98+Klq7MP:CuqBWicOPuCvM4rZ1YhaCwCkv062A8OD

Score

N/A

Malware Config

Signatures

Files

e0d29344e63e49639d4c14fe08c85a707c46c5655165083a463be895e40011fa
.exe windows x86

1fe5e911bc9c14122b1ece84dbd2ee2d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

ChangeServiceConfigA
GetUserNameA
LookupPrivilegeValueA
RegCreateKeyExA
RegEnumValueA
RegFlushKey
RegOpenKeyExA
RegisterServiceCtrlHandlerA
SetSecurityDescriptorDacl
StartServiceA
StartServiceCtrlDispatcherA

kernel32

AddAtomA
CloseHandle
CopyFileA
CreateEventA
CreateFileA
CreateMutexA
CreateProcessA
CreateThread
CreateToolhelp32Snapshot
DeleteAtom
DeleteCriticalSection
DeviceIoControl
DuplicateHandle
EnterCriticalSection
EnumSystemLocalesA
ExitProcess
FindResourceA
FreeEnvironmentStringsA
GetACP
GetCPInfo
GetComputerNameA
GetConsoleMode
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileTime
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetPrivateProfileStringA
GetPrivateProfileStructA
GetProcessHeap
GetStdHandle
GetStringTypeA
GetSystemTime
GetThreadLocale
GetTickCount
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetVersionExA
GetWindowsDirectoryA
GlobalReAlloc
GlobalUnlock
HeapDestroy
HeapFree
HeapReAlloc
InterlockedDecrement
InterlockedIncrement
IsBadReadPtr
IsBadWritePtr
IsDebuggerPresent
IsValidCodePage
LoadLibraryA
LoadLibraryExA
LocalFree
LockResource
MoveFileA
QueryPerformanceCounter
ReadFile
ReleaseMutex
ResumeThread
RtlUnwind
SetEndOfFile
SetEnvironmentVariableA
SetHandleCount
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SuspendThread
TerminateProcess
TlsAlloc
TlsSetValue
VirtualAlloc
WideCharToMultiByte
WriteConsoleA
lstrcmpiA

ole32

CLSIDFromProgID
CLSIDFromString
CoRevokeClassObject
OleRegGetMiscStatus
OleUninitialize

user32

CallNextHookEx
CharPrevA
CheckDlgButton
DispatchMessageA
FillRect
GetAsyncKeyState
GetClassNameA
GetDlgItem
GetMessageA
GetSystemMenu
GetWindowLongA
InflateRect
IsRectEmpty
IsWindowEnabled
KillTimer
LoadBitmapA
LoadCursorA
MessageBoxA
MoveWindow
PeekMessageA
SendMessageA
SetRect
SetWindowPos
SetWindowRgn
SetWindowTextA
ShowWindow
TranslateMessage
wsprintfA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: - Virtual size: 276KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 175KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1fe5e911bc9c14122b1ece84dbd2ee2d

Headers

File Characteristics

Imports

advapi32

kernel32

ole32

user32

version

Sections

.text Size: - Virtual size: 276KB

.data Size: 175KB - Virtual size: 176KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: - Virtual size: 276KB

.data
Size: 175KB - Virtual size: 176KB

.rsrc
Size: 3KB - Virtual size: 3KB