b894648dc72eed58040cb691428c730e54d1e3014fbb1fcd1a46f0157da14141

Sharing

Copy URL Twitter E-mail

General

Target

b894648dc72eed58040cb691428c730e54d1e3014fbb1fcd1a46f0157da14141
Size

47KB
MD5

81fd64e0384a3c94a3b7431dce7e3704
SHA1

946016515d8689a3b4edb195679b5381829add06
SHA256

b894648dc72eed58040cb691428c730e54d1e3014fbb1fcd1a46f0157da14141
SHA512

83b4545ecf475d557e499e4a8f7803aa75e45e352cad8de1fc35614cd30252f06bbe989254e891eb8e68dd1f583c8b42a71ed7e7ba462b02d4b388fd58cd9c20
SSDEEP

768:kxJDFALEr0Z2tWsNtXQn7pkCRuSHfj8GX6iz7Xl+hZFUNDLT4WLaT1JZa/AkZu:kxLmEYQfVC7qc/b8Uz7XlI/ULbLaI/C

Score

N/A

Malware Config

Signatures

Files

b894648dc72eed58040cb691428c730e54d1e3014fbb1fcd1a46f0157da14141
.exe windows x86

d3230dbc7a00ba7f8f020ccb0b292525

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

hid

HidP_SetScaledUsageValue
HidP_GetScaledUsageValue
HidD_SetFeature
HidD_GetSerialNumberString
HidD_SetOutputReport
HidD_GetIndexedString
HidD_SetNumInputBuffers
HidP_GetUsageValue
HidD_GetManufacturerString
HidP_MaxUsageListLength
HidP_MaxDataListLength
HidP_TranslateUsagesToI8042ScanCodes
HidP_GetUsages
HidD_GetNumInputBuffers
HidP_GetSpecificButtonCaps
HidD_GetHidGuid
HidD_GetProductString
HidP_UsageListDifference
HidP_SetData
HidD_GetConfiguration
HidD_FreePreparsedData
HidD_SetConfiguration
HidD_GetInputReport
HidD_GetPreparsedData
HidP_GetValueCaps
HidP_SetUsageValueArray
HidP_GetExtendedAttributes
HidP_GetUsagesEx

kernel32

WaitNamedPipeW
CreateMailslotW
GetLocaleInfoA
CancelIo
GetTimeFormatW
LocalFlags
VerLanguageNameA
CreateFileMappingW
SetDefaultCommConfigA
GetCurrentThread
SetThreadLocale
GetLongPathNameW
WriteConsoleInputVDMW
GetCompressedFileSizeA
GetModuleHandleW
WriteConsoleInputW
WriteTapemark
WritePrivateProfileSectionW
Module32Next
GetPrivateProfileSectionNamesW
GetStringTypeA
GetModuleHandleA
GetConsoleAliasW
ReplaceFileA
LoadLibraryW
GetExitCodeProcess
ReadConsoleA
GetPrivateProfileStringA

ntdll

RtlSetOwnerSecurityDescriptor
RtlUpperChar
ZwSetLdtEntries
RtlDeleteAce
NtRemoveIoCompletion
RtlQueryHeapInformation
ZwExtendSection
RtlFindActivationContextSectionString

security

EnumerateSecurityPackagesA
CompleteAuthToken
FreeCredentialsHandle
DeleteSecurityPackageA
ImportSecurityContextA
QuerySecurityPackageInfoA
AcquireCredentialsHandleW
RevertSecurityContext
ImpersonateSecurityContext
ApplyControlToken
QueryCredentialsAttributesA
QueryContextAttributesW
DecryptMessage
ImportSecurityContextW
QueryContextAttributesA
FreeContextBuffer
AcquireCredentialsHandleA

shlwapi

PathMakePrettyA
PathUnquoteSpacesW
PathMakeSystemFolderW
SHRegSetUSValueA
UrlGetPartA
PathFindExtensionW
StrChrNW
StrFormatKBSizeA
SHRegQueryUSValueW
PathStripToRootA
AssocQueryStringW
AssocQueryStringA
SHEnumKeyExA
StrCSpnA
UrlIsOpaqueA
PathMatchSpecW
DllGetVersion
SHRegWriteUSValueW
DelayLoadFailureHook
SHDeleteEmptyKeyA
SHRegCreateUSKeyW
AssocQueryKeyA
PathFileExistsA

duser

BuildAnimation
SetGadgetCenterPoint
DUserBuildGadget
UtilBuildFont
GetStdColorBrushI
DUserStopAnimation
FindGadgetFromPoint
GetStdColorBrushF
GetGadgetRotation
WaitMessageEx
LookupGadgetTicket
FireGadgetMessages
UnregisterGadgetMessageString
UnregisterGadgetMessage
UtilSetBackground
DUserRegisterSuper
DUserPostMethod
ForwardGadgetMessage
PeekMessageExA
DUserDeleteGadget
SetGadgetProperty
BuildInterpolation
GetActionTimeslice
GetStdColorI

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d3230dbc7a00ba7f8f020ccb0b292525

Headers

DLL Characteristics

File Characteristics

Imports

hid

kernel32

ntdll

security

shlwapi

duser

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 7KB - Virtual size: 7KB