b51fc028351db34f1becfdd091449d3dab1a5b456245136df14967f1d3812440

Sharing

Copy URL Twitter E-mail

General

Target

b51fc028351db34f1becfdd091449d3dab1a5b456245136df14967f1d3812440
Size

171KB
MD5

72dddea1d375ae85c353f548154be2cd
SHA1

4f33d66fa2d173aeec7d83b4d68b498c3e29e768
SHA256

b51fc028351db34f1becfdd091449d3dab1a5b456245136df14967f1d3812440
SHA512

39998b0411a0742e08e0ebd2d942d5c7e8ded30804f78ebab1173d9a911b5ac7fbf454e82a4e970da551c4441d44f8c4fa4f19f25e76ae60cc048b0d5121b073
SSDEEP

3072:SuiSL1P5AbZhPf5eBgiKt5FsMkZukOp8O5C1V5LCSqFI:Di8PgZhPf5e3KfWbZukOpd52AS

Score

N/A

Malware Config

Signatures

Files

b51fc028351db34f1becfdd091449d3dab1a5b456245136df14967f1d3812440
.exe windows x86

fdd48e5d476f97821341c069148a2b6b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

AddAce
ChangeServiceConfigW
CloseServiceHandle
ControlService
ConvertStringSecurityDescriptorToSecurityDescriptorW
InitializeSid
OpenSCManagerW
OpenServiceW
RegCloseKey
RegCreateKeyExW
RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
RegSetKeySecurity
RegSetValueExW

setupapi

CMP_Report_LogOn
SetupCloseLog
SetupOpenLog
SetupLogErrorW
SetupDiSetClassInstallParamsW
SetupDiOpenDevRegKey
SetupDiInstallDevice
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassInstallParamsW
SetupDiCreateDevRegKeyW
CM_Create_DevNodeA

user32

ShowWindow
SetWindowTextW
SetWindowLongW
OffsetRect
IsWindowEnabled
GetWindowTextW
GetWindowLongW
GetThreadDesktop
GetParent
EndDialog
EnableWindow
DialogBoxParamW
SendMessageW

shell32

ShellExecuteW
SHSetUnreadMailCountW
SHOpenFolderAndSelectItems

kernel32

CloseHandle
GetCurrentThreadId
GetCurrentProcess
GetComputerNameW
ExitProcess
DisableThreadLibraryCalls
DeviceIoControl
CreateFileW
CompareStringW
GetModuleHandleA
GetModuleHandleW
lstrcmpiW
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
TerminateProcess
SetUnhandledExceptionFilter
SetLastError
GetLastError
MultiByteToWideChar
LocalAlloc
GetWindowsDirectoryW
GetTickCount
GetSystemTimeAsFileTime
GetProcAddress

gdi32

CloseEnhMetaFile

msvcrt

wcscmp
_except_handler3

Exports

Exports

CreateIndex
FIsValidFileNameCharW
GetBookmark
GetHtmlCharset
HrGetCertKeyUsage
HriCopyStream
PszAllocA

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fdd48e5d476f97821341c069148a2b6b

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

setupapi

user32

shell32

kernel32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 39KB - Virtual size: 39KB

.rdata Size: 83KB - Virtual size: 82KB

.data Size: 39KB - Virtual size: 39KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 39KB - Virtual size: 39KB

.rdata
Size: 83KB - Virtual size: 82KB

.data
Size: 39KB - Virtual size: 39KB

.rsrc
Size: 8KB - Virtual size: 7KB