aaeeb52697ff45196ec8ba5ac9f90e8193a7290a232a920a66be6d84fe74f902

Sharing

Copy URL Twitter E-mail

General

Target

aaeeb52697ff45196ec8ba5ac9f90e8193a7290a232a920a66be6d84fe74f902
Size

146KB
MD5

135788e0d4b02bfe485e0118e8e30d46
SHA1

43d6aaa45a913f51e6ee4a1b87dbf96b1be9435d
SHA256

aaeeb52697ff45196ec8ba5ac9f90e8193a7290a232a920a66be6d84fe74f902
SHA512

4df15ca0cef0fbab045f238d3aef81c7be703f056de646eed124817fd2a53d8502ed7e55b995d510c74628ff0a1153a928a3ae47bb463b1b29faf9c8a5962c40
SSDEEP

1536:w3icaPgpU5I3zftPClhUsDI5eOkdwTckXJXI0ARdgleSZvWRM0xET:q4VI3zft8TDI5ZkdS/ZY0oSZOqOi

Score

N/A

Malware Config

Signatures

Files

aaeeb52697ff45196ec8ba5ac9f90e8193a7290a232a920a66be6d84fe74f902
.exe windows x86

196bcf861c92f1d7ba50a20b0cf549b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
GetFileSize
UnmapViewOfFile
SetFileAttributesA
GetLastError
CreateProcessA
GetEnvironmentVariableA
GetModuleFileNameA
WinExec
GetTempFileNameA
GetTempPathA
Sleep
GetSystemDirectoryA
GetPrivateProfileStringA
FreeLibrary
Process32Next
Process32First
CreateToolhelp32Snapshot
GlobalFree
GlobalAlloc
GetVersionExA
lstrcmpiA
MapViewOfFile
GetCurrentThreadId
WritePrivateProfileStringA
DeviceIoControl
OutputDebugStringA
SetSystemTime
GetSystemTime
MoveFileExA
WaitForSingleObject
CreateThread
LCMapStringW
LCMapStringA
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
FlushFileBuffers
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
DeleteFileA
LoadLibraryA
GetProcAddress
GetFileAttributesA
FindResourceA
LoadResource
LockResource
SizeofResource
GetCurrentProcess
lstrcatA
CreateFileA
SetFilePointer
ReadFile
WriteFile
TerminateProcess
CloseHandle
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapReAlloc
VirtualAlloc
HeapAlloc
VirtualFree
HeapFree
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapDestroy
HeapCreate

user32

GetInputState
PostThreadMessageA
GetMessageA
MessageBoxA
GetDesktopWindow
GetWindowTextA
CreateDesktopA
SetThreadDesktop
CloseDesktop
FindWindowExA
PostMessageA
GetTopWindow
GetWindowThreadProcessId
GetClassNameA
GetWindow
wsprintfA
GetThreadDesktop

advapi32

RegOpenKeyA
RegQueryValueExA
QueryServiceStatus
StartServiceA
RegSetValueExA
RegCloseKey
CreateServiceA
OpenSCManagerA
OpenServiceA
CloseServiceHandle
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegCreateKeyExA

shell32

SHGetSpecialFolderPathA

shlwapi

SHSetValueA
SHDeleteKeyA
PathRemoveFileSpecA
PathAppendA

Sections

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

196bcf861c92f1d7ba50a20b0cf549b5

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

shlwapi

Sections

.text Size: 112KB - Virtual size: 112KB

.rsrc Size: 20KB - Virtual size: 20KB

.text
Size: 112KB - Virtual size: 112KB

.rsrc
Size: 20KB - Virtual size: 20KB