b04f17c1d93ca085b43623689be0bbf6eb6d9c725b47293b31054d4195e56c34

Sharing

Copy URL

Twitter E-mail

General

Target

b04f17c1d93ca085b43623689be0bbf6eb6d9c725b47293b31054d4195e56c34
Size

420KB
MD5

1200f630d960ea698515201af0f0c006
SHA1

5ba609358b8526c0378df266aff57b7aa21e3ed9
SHA256

b04f17c1d93ca085b43623689be0bbf6eb6d9c725b47293b31054d4195e56c34
SHA512

a72aa470f9f4f1ecd22eff01a9e74ca74c03f42f96a6004e330138673b2b52576dfa663ea8671daa6f7ae5f82bf9e7bb931b559540d336263cbf3aa2c8c0178d
SSDEEP

6144:ZQHEannVRVHgyA37acHbkwKSvpruDo+sOJDy/GQoyVHi1i/nEtqhAxFzjtc7Ec6o:GHnVRCyAJKShulPk/GOVHZJcFlc7qUb

Score

N/A

Malware Config

Signatures

Files

b04f17c1d93ca085b43623689be0bbf6eb6d9c725b47293b31054d4195e56c34
.exe windows x86

0b9c62fd662493f4b048fd60c404f373

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
VerInstallFileW
VerFindFileA
VerInstallFileA

advapi32

QueryServiceConfigW
SetSecurityDescriptorOwner
CreateProcessAsUserA
GetSecurityDescriptorOwner
GetSecurityDescriptorDacl
QueryServiceStatus
GetAclInformation
OpenProcessToken
EnumServicesStatusA
SetFileSecurityW
GetEffectiveRightsFromAclW
RegisterEventSourceA
AddAce
RegSetValueExW
LookupPrivilegeValueA
QueryServiceLockStatusW
SetKernelObjectSecurity
StartServiceCtrlDispatcherA
RegDeleteKeyA
RegUnLoadKeyW
RegEnumKeyW
StartServiceA
ChangeServiceConfigW
GetServiceDisplayNameW
InitializeSid
DeleteService
GetSidLengthRequired
RegCloseKey
MakeSelfRelativeSD
FreeSid

kernel32

GetStringTypeA
GetDriveTypeW
GetDateFormatW
GetStartupInfoA
GetModuleHandleA

gdi32

AbortDoc
EnumMetaFile
SetViewportExtEx
GetBkColor
StretchBlt
DeleteObject
GetTextExtentPoint32W
GetFontData
CreateCompatibleBitmap
SetWinMetaFileBits
CreateCompatibleDC
GetDIBColorTable
CreateFontIndirectW
CreateDIBSection
CreateDCW
GetBrushOrgEx
SetPolyFillMode
SetAbortProc
CreateICA
EndDoc
PtVisible
GetMapMode
GetWindowOrgEx
SetWindowOrgEx
BeginPath
GetTextCharsetInfo
CreateFontW
SelectClipRgn
GetKerningPairsA
CreateRectRgn
SetDIBColorTable
EnumFontFamiliesExW
SetWindowExtEx
OffsetWindowOrgEx
Arc
Polygon
GetROP2
LPtoDP
SetBkMode
RealizePalette
CreateEllipticRgn
StartDocW
GetTextMetricsA
EnumFontFamiliesA
SetStretchBltMode
DPtoLP
SetTextAlign
GdiFlush
CreateSolidBrush
UnrealizeObject
StrokePath
ExtTextOutA
CreateICW
GetTextColor
ScaleWindowExtEx
SetMapMode
GetDeviceCaps
CreateRoundRectRgn
CopyEnhMetaFileW
GetSystemPaletteEntries
Rectangle
RectVisible
ExtCreatePen
ResizePalette
CreateDIBPatternBrushPt
ExtSelectClipRgn
ScaleViewportExtEx
CreateDCA
MoveToEx
CreateFontA
GetCharWidthA
GetBitmapBits
GetTextExtentPoint32A
OffsetViewportOrgEx
SetTextColor
ExtEscape
FillPath
GetEnhMetaFileBits
GetObjectW
SetPixel
IntersectClipRect
GetTextAlign
GetClipRgn
TextOutA
CopyEnhMetaFileA
EndPage
DeleteEnhMetaFile
CombineRgn
SetBitmapBits
GetGlyphOutlineW
ExtCreateRegion
EqualRgn
PolyBezierTo
CreatePenIndirect
Polyline
ExtFloodFill
GetObjectType
SetPixelFormat
StartDocA
GetStockObject
SaveDC
GetClipBox
PlayEnhMetaFile
GetPixel
RemoveFontResourceA
CancelDC
UpdateColors
PlayEnhMetaFileRecord
Ellipse
SetWorldTransform

netapi32

NetServerEnum

user32

SendMessageA
SetUserObjectSecurity

mpr

WNetCancelConnection2A

msvcrt

_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
_acmdln
exit
_pctype
_pipe
_onexit
__dllonexit
_mbcjmstojis
__getmainargs
_controlfp
ungetwc

Sections

.text
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 538KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0b9c62fd662493f4b048fd60c404f373

Headers

File Characteristics

Imports

version

advapi32

kernel32

gdi32

netapi32

user32

mpr

msvcrt

Sections

.text Size: 92KB - Virtual size: 90KB

.rdata Size: 64KB - Virtual size: 60KB

.data Size: 8KB - Virtual size: 538KB

.rsrc Size: 76KB - Virtual size: 74KB

.text
Size: 92KB - Virtual size: 90KB

.rdata
Size: 64KB - Virtual size: 60KB

.data
Size: 8KB - Virtual size: 538KB

.rsrc
Size: 76KB - Virtual size: 74KB