788e9a9f99f0760ac4400eaf59b2313c6e5c8f6b08727c58c673d73f919de2c2

Sharing

Copy URL Twitter E-mail

General

Target

788e9a9f99f0760ac4400eaf59b2313c6e5c8f6b08727c58c673d73f919de2c2
Size

151KB
MD5

71fec8e956608501e86c9f83d68ba4aa
SHA1

5041795e19d6dabbdec3f49ffb5baeb3f8960799
SHA256

788e9a9f99f0760ac4400eaf59b2313c6e5c8f6b08727c58c673d73f919de2c2
SHA512

01fdfcd7865073c33f56c11158ce7aeda953885e958bc212ba23812d346415b7ad6124f37c7c19830bcce5ec0cb17f24ae5b5a909db1e22dab0d50cda1b6657c
SSDEEP

3072:+p9ECMz4pbdU3STYJizoQ4nPv4vwCsz2dLgSp4J3B7nRF:c9m9iToi0tIvwOLgSpiBR

Score

N/A

Malware Config

Signatures

Files

788e9a9f99f0760ac4400eaf59b2313c6e5c8f6b08727c58c673d73f919de2c2
.exe windows x86

40942b4bac38bd5f3d10892469d262de

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiOpenDevRegKey
CM_Create_DevNodeA
SetupCloseLog
SetupDiCreateDevRegKeyW
SetupOpenLog
SetupLogErrorW
SetupDiSetClassInstallParamsW
CMP_Init_Detection
SetupDiInstallDevice
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassInstallParamsW

msvcrt

_vsnwprintf
_except_handler3
wcscmp

advapi32

RegSetValueExW
RegSetKeySecurity
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegCloseKey
OpenServiceW
OpenSCManagerW
InitializeSid
CreateServiceW
ConvertStringSecurityDescriptorToSecurityDescriptorW
ControlService
CloseServiceHandle
ChangeServiceConfigW
AddAce

gdi32

CloseEnhMetaFile

user32

ShowWindow
SetWindowTextW
SetWindowLongW
SendMessageW
OffsetRect
IsWindowEnabled
GetWindowTextW
GetThreadDesktop
GetParent
EndDialog
EnableWindow
DialogBoxParamW
GetWindowLongW

kernel32

CloseHandle
CompareStringW
CreateFileW
DeviceIoControl
DisableThreadLibraryCalls
ExitProcess
GetTickCount
GetCurrentProcess
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetModuleHandleW
GetSystemTimeAsFileTime
GetProcAddress
GetComputerNameW
lstrcmpiW
VirtualProtect
VirtualFree
VirtualAlloc
VerifyVersionInfoW
GetWindowsDirectoryW
UnhandledExceptionFilter
TerminateProcess
SetUnhandledExceptionFilter
SetLastError
MultiByteToWideChar
LocalAlloc

shell32

SHSetUnreadMailCountW
SHOpenFolderAndSelectItems
ShellExecuteW

Exports

Exports

ASetEOFMark
AppendTempFileList
GetTableColumnInfo
ReplaceChars
StrTokEx
StreamSubStringMatch
UnlocStrEqNW

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

40942b4bac38bd5f3d10892469d262de

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

msvcrt

advapi32

gdi32

user32

kernel32

shell32

Exports

Exports

Sections

.text Size: 37KB - Virtual size: 37KB

.rdata Size: 65KB - Virtual size: 65KB

.data Size: 39KB - Virtual size: 39KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 37KB - Virtual size: 37KB

.rdata
Size: 65KB - Virtual size: 65KB

.data
Size: 39KB - Virtual size: 39KB

.rsrc
Size: 8KB - Virtual size: 7KB