efe65373e1aad722359cc976d30fe22cbdfd568ee939549ebf09b4dd1f75a135

Sharing

Copy URL Twitter E-mail

General

Target

efe65373e1aad722359cc976d30fe22cbdfd568ee939549ebf09b4dd1f75a135
Size

30KB
MD5

07f63ee298d944bca8cf945289adedee
SHA1

06f00dbbef9190b81f3030632454c000b27aa62e
SHA256

efe65373e1aad722359cc976d30fe22cbdfd568ee939549ebf09b4dd1f75a135
SHA512

ba17636a03cf7472d2eff8575a2bf5f60834ebcda2adbbad1c07b86f271e44adff66a96ef00845c7b32b72caf3d8caef22f54d227f0972f0e92c966265a76ef0
SSDEEP

768:214GvqyPEjqAtQpEemlCs9S2G+YNykrnX9:/GvqyPEjDCW/dIrHN

Score

N/A

Malware Config

Signatures

Files

efe65373e1aad722359cc976d30fe22cbdfd568ee939549ebf09b4dd1f75a135
.exe windows x86

9ae6cecb49518be0148f9ae577978597

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoTaskMemFree
CoCreateInstance

kernel32

GlobalMemoryStatus
GetDiskFreeSpaceA
GetDriveTypeA
GetFileSize
GetLastError
GetLocalTime
CloseHandle
CreateFileA
CreateFileMappingA
CreateToolhelp32Snapshot
ExitProcess
lstrlenW
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcmpA
lstrcatA
_lwrite
_lread
_lopen
_lcreat
FindClose
FindFirstFileA
FindNextFileA
GetComputerNameA
GetCurrentDirectoryA
_lclose
WriteFile
WideCharToMultiByte
UnmapViewOfFile
Sleep
ReadFile
Process32Next
Process32First
OpenProcess
MultiByteToWideChar
MapViewOfFile
LocalFree
LocalAlloc
LoadLibraryA
GetLocaleInfoA
GlobalFree
GlobalAlloc
GetWindowsDirectoryA
GetVolumeInformationA
GetVersionExA
GetTempPathA
GetSystemDirectoryA
GetProcAddress
GetPrivateProfileStringA
GetPrivateProfileSectionNamesA
GetPrivateProfileIntA
GetModuleFileNameA
GetLogicalDrives
GetCurrentProcess

user32

ReleaseDC
wsprintfA
GetDC

oleaut32

SafeArrayCreateVector
SafeArrayAccessData
SafeArrayDestroy
SafeArrayUnaccessData
SysAllocString
SysFreeString

advapi32

LookupPrivilegeValueA
AdjustTokenPrivileges
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegEnumValueA
RegEnumKeyExA
RegCreateKeyA
RegCloseKey
OpenProcessToken
GetUserNameA

shlwapi

StrStrIA
StrCmpNA
StrChrA
StrRChrA

wsock32

socket
send
recv
gethostname
closesocket
WSAStartup

ws2_32

WSAIoctl

rasapi32

RasGetEntryDialParamsA
RasGetEntryPropertiesA
RasEnumEntriesA

gdi32

GetDeviceCaps

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9ae6cecb49518be0148f9ae577978597

Headers

File Characteristics

Imports

ole32

kernel32

user32

oleaut32

advapi32

shlwapi

wsock32

ws2_32

rasapi32

gdi32

Sections

.text Size: 22KB - Virtual size: 21KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 188KB

.text
Size: 22KB - Virtual size: 21KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 188KB